Aggregator

讨论了AI大模型越狱的机制、攻击方式及其防御方法

今年一季度美国经济下滑了 0.3%，几年前欣欣向荣的美国经济正面临不确定性。历史悠久的自由软件和开源新闻网站 LWN 报告它也受到当下政治和经济动荡的影响。LWN 注意到从 3 月初起，新订阅量和续订量都出现了明显下滑。这与美国发起的贸易战以及由此导致的经济衰退相一致。订阅量减少目前尚未对 LWN 构成生存威胁，也没有影响到作者的薪酬，但这一情况令人担忧。为应对挑战 LWN 开始勒紧裤腰带过日子。如果情况恶化，它可能不得不提高订阅价格。LWN 是一家美国公司，但很大一部分订阅来自国外。如果针对美国公司的抵制情绪加剧，它不太可能不受影响。

Мечты о светлом будущем микросхем разбились о новый доклад Счетной палаты.

The FBI has shared 42,000 phishing domains tied to the LabHost cybercrime platform, one of the largest global phishing-as-a-service (PhaaS) platforms that was dismantled in April 2024. [...]

A vulnerability was found in Amasty Blog Pro Plugin 2.10.3 on Magento and classified as problematic. Affected by this issue is some unknown functionality of the component Preview Handler. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2022-36432. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Siemens syngo Dynamics and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to relative path traversal. This vulnerability is known as CVE-2022-42892. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Siemens syngo Dynamics and classified as critical. Affected by this issue is some unknown functionality of the component Web Service. The manipulation leads to file inclusion. This vulnerability is handled as CVE-2022-42893. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Siemens Syngo Dynamics. This affects an unknown part of the component Web Service. The manipulation leads to server-side request forgery. This vulnerability is uniquely identified as CVE-2022-42894. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Google Android and classified as critical. This vulnerability affects unknown code. The manipulation leads to improper input validation. This vulnerability was named CVE-2022-20459. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Google Android. It has been classified as critical. Affected is an unknown function. The manipulation leads to out-of-bounds write. This vulnerability is traded as CVE-2022-20428. Local access is required to approach this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Google Android. It has been declared as critical. Affected by this vulnerability is the function mprot_unmap. The manipulation leads to out-of-bounds write. This vulnerability is known as CVE-2022-20460. Attacking locally is a requirement. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in WithSecure up to 2022-08-10 and classified as problematic. This issue affects some unknown processing. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2022-38165. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability was found in Zoho ManageEngine SupportCenter Plus up to 11024. It has been rated as problematic. Affected by this issue is some unknown functionality of the component User List Handler. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2022-42903. The attack needs to be done within the local network. There is no exploit available.

A vulnerability was found in Media5 Mediatrix 4102 and classified as critical. Affected by this issue is some unknown functionality of the component UART Port. The manipulation leads to Local Privilege Escalation. This vulnerability is handled as CVE-2022-43096. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

As the field of artificial intelligence (AI) continues to evolve at a rapid pace, new research has found how techniques that render the Model Context Protocol (MCP) susceptible to prompt injection attacks could be used to develop security tooling or identify malicious tools, according to a new report from Tenable. MCP, launched by Anthropic in November 2024, is a framework designed to connect

Darktrace’s Security Operations Center (SOC) in late 2024 and early 2025, cybercriminals have been exploiting legitimate Software-as-a-Service (SaaS) platforms like Milanote to orchestrate sophisticated phishing campaigns. These attacks, bolstered by the Tycoon 2FA phishing kit, demonstrate an advanced Adversary-in-the-Middle (AiTM) approach that circumvents multi-factor authentication (MFA) protections. Leveraging Legitimate Services for Stealthy Attacks By abusing […]

The post AiTM Phishing Kits Bypass MFA by Hijacking Credentials and Session Tokens appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

基于多模态学习的混淆隧道流量行为检测方案 by ourren

2024年在野零日漏洞利用分析（上） by ourren

软件工厂关键技术分析及启示 by ourren

更多最新文章，请访问SecWiki