Lucene search
K
PacketstormnewsRecent

6771 matches found

Packet Storm News
Packet Storm News
added 2026/06/17 12:0 a.m.27 views

PhantomSkill: Malicious Code Injection in Agent Skill Ecosystems

Agent skills allow LLM-based coding agents to acquire domain-specific capabilities from third-party packages, but they also introduce a new supply-chain attack surface. We present PhantomSkill, an attack framework that hides malicious behavior in a skill's auxiliary resources rather than in its...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/17 12:0 a.m.49 views

OpenAnt: LLM-Powered Vulnerability Discovery through Code Decomposition, Adversarial Verification, and Dynamic Testing

Automated vulnerability discovery in large codebases remains challenging: traditional static analysis produces high false-positive rates, while dynamic approaches such as fuzzing require substantial infrastructure and often target narrow classes of bugs. Recent advances in large language models...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/17 12:0 a.m.11 views

Discuz! X5.0 Plugin Access Control Checker

This Metasploit module checks whether the enabledisable.php endpoint is accessible without proper authentication in Discuz! X5.0. It does not exploit any vulnerability...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.11 views

AnyDesk 9.7.5 Unquoted Service Path

AnyDesk version 9.7.5 unquoted service path privilege escalation to SYSTEM exploit...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.7 views

AI Sandboxes: A Threat Model, Taxonomy, and Measurement Framework

AI systems are increasingly evaluated in bounded environments that combine isolation, simulation, instrumentation, supervision, and evidence capture. For physical AI, AIoT, and cyber-physical systems, this shift is not a matter of terminology: the system under test may sense, decide, actuate,...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.7 views

TGCM: Topic-Guided Generative Disentanglement of Interleaved APT Technique Sequences

In enterprise environments, multiple Advanced Persistent Threat APT campaigns often unfold concurrently, producing audit logs in which attack techniques across actors sources are interleaved over time. This setting naturally gives rise to an Unknown-K Interleaved Sequence Demixing UKISD problem:...

6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.3 views

A Red-Team Study of Anthropic Fable 5 and Opus 4.8 Models

We evaluate the adversarial robustness of two frontier large language models LLMs developed by Anthropic, Fable 5 and Opus 4.8, against four families of automated jailbreak attack across 7 826 harmful intents spanning a ten-category harm taxonomy. Using the HackAgent red-teaming framework, hundre...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.6 views

Is It Real? Exploiting Virtual-Physical Discrimination Vulnerability in Mixed Reality

Consumer mixed reality MR headsets seamlessly blend virtual content into physical environments with sufficient fidelity that users may be unable to distinguish virtual objects from physical ones. We identify this virtual-physical discrimination vulnerability as an exploitable security primitive...

5.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.4 views

ARES: A Platform for Adaptive Role-Based Evaluation of Social Engineering Risks in Human--AI Games

This work introduces ARES, a platform and open pilot dataset for auditing adaptive social engineering risks in LLM-mediated social decision-making through controlled social games. ARES supports human--human, human--AI, and AI--AI settings, combining configurable game templates, role-conditioned L...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.7 views

Slate Digital Connect 1.37.0 Local Privilege Escalation

Slate Digital Connect for macOS version 1.37.0 suffers from multiple local privilege escalation vulnerabilities...

8.4CVSS5.2AI score0.00131EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.10 views

Confident yet Concerned: Inconsistencies in Computing Students' Attitudes on Cybersecurity

Today's young adults are most immersed in technology, leading in feelings of powerlessness in managing online privacy across many platforms, and particularly susceptible to phishing attacks. This raises questions about their general, wide-ranging attitudes towards and management of cybersecurity...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.10 views

Agentra: A Supervisable Multi-Agent Framework for Enterprise Intrusion Response

Enterprise intrusion response still depends on static playbooks and analyst-driven triage, creating delay between alert generation and containment. We present Agentra, a supervisable multi-agent Intrusion Response System IRS framework that converts alerts from IDS, EDR, and XDR platforms into...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.5 views

ShellGames: Speculative LLM-Driven SSH Deception

Cyber deception and Moving Target Defense are promising strategies that aim to disrupt adversaries by increasing uncertainty. However, sustaining long-lived, credible interactive sessions with adversaries remains an open challenge. Large Language Models LLMs offer a promising path toward more...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.7 views

Wertheim SafeController Hardware for VAULT ROOMS Missing Crypto / Insufficient TLS

Wertheim SafeController Hardware for VAULT ROOMS suffers from a lack of cryptographic protection, insufficient TLS encryption, and an undisclosed vulnerability. Affected versions include the Controller 65000 with AssemblyVersion 6.11.8130.22319 and Controller 5400 with AssemblyVersion...

8.6CVSS5.4AI score0.00196EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.4 views

Anywhere, Any-Stymie: Remote Activation of Trojan Malware on LiDAR with Modulated Signals

LiDAR sensors are widely deployed in autonomous systems for 3D perception and safety-critical decision-making. We identify a previously unexplored attack surface in which dormant malware embedded in the LiDAR sensing pipeline remains inactive during normal operation and can be externally triggere...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.6 views

SNAS: A Multi-Layer Defense-In-Depth Architecture for Secure Egress in Sandboxed Workloads

Snowpark enables data engineering and AI/ML workloads in Snowflake by executing user-defined functions in secure sandboxes. Many of these workloads require external connectivity to access cloud APIs, external databases, or feature stores, creating a dependability challenge: how to provide...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.5 views

Children Are Not the Enemy: Child-Fit Security As an Alternative to Bans and Surveillance

Digital technologies are now central to children's learning, play, communication, identity formation, and social participation. Yet dominant approaches to children's online safety often rely on containment mechanisms, including bans, age gates, parental controls, monitoring, and screen-time...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.29 views

Code-Augur: Agentic Vulnerability Detection Via Specification Inference

The advent of agentic vulnerability detection is already becoming a watershed moment for software security. Audits conducted entirely by autonomous LLM agents are uncovering critical vulnerabilities in fundamental software underpinning digital society. Many of these vulnerabilities remained maske...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.6 views

Apache 2.4.66 HTTP/2 mod_http2 Double-Free Denial of Service

This script is a multi-mode security tool that triggers a denial of service against Apache HTTP Server version 2.4.66 related to a double-free condition in HTTP/2 handling...

8.8CVSS7.5AI score0.4581EPSS
Exploits16
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.8 views

Apache 2.4.66 HTTP/2 mod_http2 Web Server Fingerprinting / Risk Checker

Simple python script that extracts a webserver version and notes if it's Apache 2.4.66 or if the version isn't disclosed...

8.8CVSS5.6AI score0.4581EPSS
Exploits16
Packet Storm News
Packet Storm News
added 2026/06/16 12:0 a.m.4 views

An AI Security Agent for Banking: Multi-Vector Fraud and AML Detection across Retail and Corporate Accounts

Banks simultaneously face signature-based fraud card-not-present attacks, account takeover, ATM cloning and behavioural financial crime structuring, layering, mule networks, business email compromise -- two threat families with fundamentally different detection requirements. Static rule engines...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.4 views

SoK: Taxonomizing the Low-Level Attack Surface of Modern Web Browsers

The web browser remains one of the most exposed remote attack surfaces on end-user systems, and memory-corruption flaws continue to play a central role in real-world browser exploitation. Despite a decade of intensive browser testing and bug-disclosure efforts, the community still lacks an...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.11 views

FreeType Glyph Loader for Font Parsing Validation

This Python script uses the FreeType bindings to load and inspect a specified TrueType font file and test glyph parsing behavior for a chosen glyph index. It initializes a font face, displays basic metadata such as the font family name and glyph count, then attempts to load a target glyph using...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.10 views

FreeType SHZ Patch Validation Harness for Safe Glyph Processing Verification

This C validation tool is designed to verify that a security fix for a suspected SHZ-related vulnerability in the FreeType TrueType interpreter behaves correctly after patching...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.8 views

How Much Can We Trust LLM Search Agents? Measuring Endorsement Vulnerability to Web Content Manipulation

Large language model LLM-based search agents synthesize open-web content into actionable recommendations on behalf of users, creating a risk that attacker-published pages are transformed into endorsed claims. We introduce SearchGEO, a controlled evaluation framework for measuring endorsement...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.10 views

Joern 4.0.558

Joern is the bug hunter's workbench. With this tool, you can uncover attack surface, sloppy coding practices, and variants of known vulnerabilities using an interactive code analysis shell. Joern supports C, C++, LLVM bitcode, x86 binaries via Ghidra, JVM bytecode via Soot, and Javascript...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.7 views

MIPSBLEED: Uncovering Microarchitectural Timing Leaks in Pervasive Embedded Processors

Despite their age, MIPS processors remain deeply embedded in routers, industrial controllers, and IoT systems, yet their security against modern side-channel attacks has received little attention. This paper exposes how Simultaneous Multithreading SMT, a feature increasingly used to boost...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.5 views

Graph Neural Networks at War: Integrating Cybersecurity and Drone Intelligence in the Israeli-Iranian Conflict

Physical cyber systems have brought about new threats and challenges in detection and immediate response. This study examines how Graph Neural Networks GNNs can be used to aid cybersecurity and drone management in a physical cyber system comprising of cyber intrusions and unmanned aerial vehicles...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.13 views

Dynamic Malicious Skills in Agentic AI

Skills are a key enabling component of agentic AI. While they enhance agents' capabilities, they also introduce new attack surfaces. In this work, we investigate one such attack surface by demonstrating dynamic malicious skills. By embedding malicious instructions in natural-language documentatio...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.9 views

YARA-X 1.18.0

YARA-X is a re-incarnation of YARA, a pattern matching tool designed with malware researchers in mind. This new incarnation intends to be faster, safer and more user-friendly than its predecessor. The ultimate goal of YARA-X is replacing YARA as the default pattern matching tool for malware...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.11 views

Di5Guise: 5G Privacy with VSIM

SIM cards have been the key building block of user authenticationand security in cellular networks. While they are meant to serve as privacy protecting elements in cellular communications, they can be the root cause of privacy loss. Current eSIMs come with a fixed device profile--comprising a...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.13 views

FreeType Scanner for Structural Anomaly Detection

This Python utility implements a heuristic analysis framework for inspecting TrueType glyph metadata and identifying structurally unusual or potentially problematic glyph configurations...

5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.8 views

A Data-Driven Security Quantification Framework for IoT-Based Systems

The Internet of Things IoT is integral to modern cyber-physical systems. Quantitative cybersecurity assessment in IoT environments remains challenging due to heterogeneous system architectures, evolving threat landscapes, and the limited availability of reliable probabilistic exploitability data...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.10 views

SPARK: Security Knowledge Priming and Representation-Guided Knowledge Activation for LLM-Based Secure Code Generation

Large language models routinely generate code with exploitable security flaws. Prior literature attributes this limitation to a lack of security expertise, steering current defense mechanisms toward heavy fine-tuning or external knowledge retrieval, which introduces significant computational...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.18 views

DoubtProbe: Black-Box Jailbreak Defense Via Structural Verification and Semantic Auditing

As large language models LLMs are increasingly deployed in user-facing systems, black-box jailbreak defense has become an important practical problem. Existing defenses often rely on known-attack coverage, prompt-level semantic judgment, or local runtime control, yet these paths can become unstab...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.10 views

Maestro 0.17.0

Maestro is a cross-platform desktop app for orchestrating your fleet of AI agents and projects. It's a high-velocity solution for hackers who are juggling multiple projects in parallel. Designed for power users who live on the keyboard and rarely touch the mouse. Collaborate with AI to create...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.18 views

FreeType Glyph Parallel Range Scanner for Font Parsing Stability Testing

This Python tool performs automated glyph parsing validation across a configurable range of glyph indices within a font file using FreeType bindings. It loads the target font, extracts metadata such as family name, style, and glyph count, then iteratively tests glyph loading operations using...

5.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.7 views

WordPress GravityForms Intrusion Detection System

This Python script implements a lightweight Intrusion Detection System IDS designed to monitor and analyze HTTP requests related to Gravity Forms in WordPress environments...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.3 views

SoK: AI-Augmented Binary Reversing

Binary reversing is fundamental to software understanding, vulnerability discovery, malware investigation, and firmware auditing. However, it remains inherently challenging due to the irreversible loss of semantic information during compilation. Recent advances in machine learning, large language...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.21 views

FreeType SHZ Heap Buffer Overflow Verification Tool

This C proof of concept is designed to validate the presence of a potential heap buffer overflow in the TrueType bytecode interpreter of the FreeType library. The program initializes FreeType, loads a user-supplied modified TrueType font file, explicitly enables the interpreter mode, and attempts...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.16 views

Measurement Study of Post-Quantum Readiness of Internet: 2026

The emergence of quantum computing presents a fundamental challenge to the security of current Internet communication systems. Transport Layer Security TLS, which forms the backbone of secure web communication, predominantly relies on classical public-key cryptographic algorithms such as RSA and...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.6 views

Scalable Malware Family Classification Using Quantum Kernel Based Machine Learning

The classification of malware families is a key challenge in cybersecurity, which enables threat attribution, analysis of attack operations, and the formulation of effective defense strategies. Emerging malware samples are becoming increasingly structurally similar and obfuscated, making accurate...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.11 views

From Third-Party to First-Party: Measuring and Protecting against Modern Web Tracking Mechanisms

Web user tracking has always been a cat-and-mouse game between privacy-conscious users and trackers. Recently, this conflict has driven a shift from third-party tracking toward first-party tracking FPT and server-side tracking SST. By relocating tracking logic to the browser's first-party context...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.10 views

BGP Health Check Scanner

This Ruby script implements a lightweight network scanner for basic health verification of a BGP service. It connects to a target TCP port default 179 and performs a minimal, non-exploitative handshake using simplified BGP OPEN and KEEPALIVE messages based on the protocol structure used by the BI...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.12 views

Transferable Self-Evolving Playbooks for Agentic Security Auditing

An LLM agent for vulnerability discovery and validation is more than a model. It combines three components: an LLM for code analysis, an agent harness such as Codex or OpenCode for navigation, tool use, and execution, and an audit playbook, domain-specific procedural knowledge that guides the LLM...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.6 views

SoK: Security and Privacy of Foundation-Model-Powered Robots

Foundation models are reshaping robotics by enabling robots to interpret open-ended instructions, reason over multimodal contexts, and operate in complex, open-world environments. However, their integration also introduces security and privacy S&P risks that extend beyond the FMs themselves to...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.11 views

FreeType SHZ 2.14.3 Font Parsing Analyzer for Glyph Stability Assessment

This Python script performs basic robustness testing of font parsing behavior using the FreeType bindings by loading a target font and iterating through a large set of glyph indices. For each glyph, it attempts non-scaled and non-hinted glyph loading while collecting exceptions that may indicate...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.3 views

ARVO: Atlas of Reproducible Vulnerabilities for Open-Source Software

Achieving reproducibility, quantity, and diversity in vulnerability datasets has long been viewed as an inherent three-way trade-off, where improving one dimension often comes at the cost of the others. In practice, reproducibility has been the dimension most often neglected. This has limited wha...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/15 12:0 a.m.23 views

Your Privacy My Cloak: Backdoor Attacks on Differentially Private Federated Learning

Prior research suggests that differential privacy DP inherently enhances the robustness of federated learning FL against backdoor attacks. In this paper, we challenge this assumption. Through an empirical analysis of two baseline attack strategies, we uncover a fundamental tension in DP-FL: while...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/14 12:0 a.m.8 views

MASCOT-Android: A Curated Dataset and Automated Collection Pipeline for Android Malware Source Code Specimens

Compared with binaries and decompiled code, malware source code more directly reflects the attackers' original intent. However, the scarcity of source code and the high cost of manual review make such datasets difficult to build and maintain. We propose MASCOT-Android, a curated dataset of Androi...

5.3AI score
Exploits0
Total number of security vulnerabilities6771