Tag: Exploitation
-
Hacker News: Spies Jumped from One Network to Another via Wi-Fi in an Unprecedented Hack
Source URL: https://www.wired.com/story/russia-gru-apt28-wifi-daisy-chain-breach/ Source: Hacker News Title: Spies Jumped from One Network to Another via Wi-Fi in an Unprecedented Hack Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a novel Wi-Fi hacking technique identified by cybersecurity researchers, particularly a type of attack dubbed the “nearest neighbor attack,” which allows hackers to…
-
Slashdot: Russian Spies Jumped From One Network To Another Via Wi-Fi
Source URL: https://mobile.slashdot.org/story/24/11/22/2331247/russian-spies-jumped-from-one-network-to-another-via-wi-fi?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Russian Spies Jumped From One Network To Another Via Wi-Fi Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a significant cybersecurity breach investigated by Veloxity, detailing how Russian hackers were able to daisy-chain multiple Wi-Fi networks to conduct sophisticated intrusions. This case study illustrates the evolving…
-
The Register: Here’s what happens if you don’t layer network security – or remove unused web shells
Source URL: https://www.theregister.com/2024/11/22/cisa_red_team_exercise/ Source: The Register Title: Here’s what happens if you don’t layer network security – or remove unused web shells Feedly Summary: TL;DR: Attackers will break in and pwn you, as a US government red team demonstrated The US Cybersecurity and Infrastructure Agency often breaks into critical organizations’ networks – with their permission,…
-
Hacker News: Listen to the whispers: web timing attacks that work
Source URL: https://portswigger.net/research/listen-to-the-whispers-web-timing-attacks-that-actually-work Source: Hacker News Title: Listen to the whispers: web timing attacks that work Feedly Summary: Comments AI Summary and Description: Yes **Summary:** This text introduces novel web timing attack techniques capable of breaching server security by exposing hidden vulnerabilities, misconfigurations, and attack surfaces more effectively than previous methods. It emphasizes the practical…
-
Hacker News: Child safety org launches AI model trained on real child sex abuse images
Source URL: https://arstechnica.com/tech-policy/2024/11/ai-trained-on-real-child-sex-abuse-images-to-detect-new-csam/ Source: Hacker News Title: Child safety org launches AI model trained on real child sex abuse images Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the development of a cutting-edge AI model by Thorn and Hive aimed at improving the detection of unknown child sexual abuse materials (CSAM).…
-
Wired: China’s Surveillance State Is Selling Citizen Data as a Side Hustle
Source URL: https://www.wired.com/story/chineses-surveillance-state-is-selling-citizens-data-as-a-side-hustle/ Source: Wired Title: China’s Surveillance State Is Selling Citizen Data as a Side Hustle Feedly Summary: Chinese black market operators are openly recruiting government agency insiders, paying them for access to surveillance data and then reselling it online—no questions asked. AI Summary and Description: Yes Summary: The text discusses the alarming phenomenon…
-
Simon Willison’s Weblog: A warning about tiktoken, BPE, and OpenAI models
Source URL: https://simonwillison.net/2024/Nov/21/a-warning-about-tiktoken/#atom-everything Source: Simon Willison’s Weblog Title: A warning about tiktoken, BPE, and OpenAI models Feedly Summary: A warning about tiktoken, BPE, and OpenAI models Tom MacWright warns that OpenAI’s tiktoken Python library has a surprising performance profile: it’s superlinear with the length of input, meaning someone could potentially denial-of-service you by sending you…