Aggregator
Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage Campaigns
Не нужен хакер-гений. Хватит одного логина и 49 минут. Разбор атаки на цепочку поставок Injective
Critical U-Boot Bugs Undermine Secure Boot on Millions of Devices
Microsoft Teams on macOS Screen Sharing Bug Causing Blank Screens
Microsoft has confirmed a known issue in Teams on macOS that causes screen sharing to fail, freeze, or show a blank black screen during meetings. The bug affects users running macOS versions older than macOS Tahoe 26.4, and Microsoft has now updated its rollout timeline for a fix, according to Message Center update MC1392559. Users […]
The post Microsoft Teams on macOS Screen Sharing Bug Causing Blank Screens appeared first on Cyber Security News.
CVE-2023-52685 | Linux Kernel up to 6.7.1 pstore persistent_ram_init_ecc integer overflow (WID-SEC-2024-1188)
CVE-2023-52686 | Linux Kernel up to 6.7.1 powernv opal_event_init null pointer dereference (Nessus ID 210815 / WID-SEC-2024-1188)
CVE-2023-52683 | Linux Kernel up to 6.7.1 ACPI lpit_update_residency integer overflow (Nessus ID 207773 / WID-SEC-2024-1188)
CVE-2023-52684 | Linux Kernel up to 6.7.1 qseecom memory leak (85fdbf684045/6c57d7b593c4 / WID-SEC-2024-1188)
CVE-2023-52682 | Linux Kernel up to 6.1.74/6.6.13/6.7.1 f2fs_wait_on_block_writeback denial of service (WID-SEC-2024-1188)
CVE-2023-52679 | Linux Kernel up to 6.7.1 of_parse_phandle_with_args_map double free (Nessus ID 209785 / WID-SEC-2024-1188)
CVE-2023-52680 | Linux Kernel up to 5.15.147/6.1.74/6.6.13/6.7.1 ALSA _ctl_get return value (Nessus ID 210815 / WID-SEC-2024-1188)
CVE-2023-52681 | Linux Kernel up to 6.1.74/6.6.13/6.7.1 efivarfs s_fs_info allocation of resources (WID-SEC-2024-1188)
CVE-2023-52677 | Linux Kernel up to 5.15.147/6.1.74/6.6.13/6.7.1 riscv vmalloc_to_page memory leak (WID-SEC-2024-1188)
CVE-2023-52678 | Linux Kernel up to 6.1.74/6.6.13/6.7.1 amdkfd kfd_create_indirect_link_prop null pointer dereference (WID-SEC-2024-1188)
CVE-2023-52676 | Linux Kernel up to 6.6.13/6.7.1 bpf memory corruption (ad140fc856f0/e5ad9ecb8440/1d38a9ee8157 / Nessus ID 210815)
布朗大学经济学教授怀疑班级里多数学生使用 AI 作弊
北京很大,大到装得下很多人的时间
New Ghostcommit Attack Hides Malicious Prompts in Images to Exploit AI Agents
A novel supply chain attack called “Ghostcommit” that conceals prompt-injection instructions within PNG images to bypass AI code reviewers and trick coding agents into leaking secrets such as .env files. The ASSET Research Group demonstrated that a pull request containing an explicit, plain-text instruction to exfiltrate a repository’s .env file is caught immediately by LLM-based […]
The post New Ghostcommit Attack Hides Malicious Prompts in Images to Exploit AI Agents appeared first on Cyber Security News.