5°C
ciel dégagé
In a new paper, âAdversarial Poetry as a Universal Single-Turn Jailbreak Mechanism in Large Language Models,â researchers found that turning LLM prompts into poetry resulted in jailbreaking the models: Abstract: We present evidence that...
A prolific cybercriminal group that calls itself âScattered LAPSUS$ Huntersâ has dominated headlines this year by regularly stealing data from and publicly mass extorting dozens of major corporations. But the tables seem to have turned somewhat...
This quote is from House of Huawei: The Secret History of Chinaâs Most Powerful Company. âLong before anyone had heard of Ren Zhengfei or Huawei, Wan Runnan had been Chinaâs star entrepreneur in the 1980s, with his company, the Stone Group,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Democracy is colliding with the technologies of artificial intelligence. Judging from the audience reaction at the recent World Forum on Democracy in Strasbourg, the general expectation is that democracy will be the worse for it. We have another...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
On the surface, the Superbox media streaming devices for sale at retailers like BestBuy and Walmart may seem like a steal: They offer unlimited access to more than 2,200 pay-per-view and streaming services like Netflix, ESPN and Hulu, all for a...
Je ne suis pas trĂšs friand de mondanitĂ©s et jâarrive Ă Ă©chapper Ă presque toutes les rencontres informelles entre experts de justice et magistrats. Je nâaime pas lâidĂ©e de me mettre en valeur pour me vendre, et les conversations sont souvent...
We continue to encounter high-profile vulnerabilities that relate to how URL mapping (or "aliases") interac\|zsh:1: parse error near `&' ts with URL-based access control. Last week, we wrote about the Oracle Identity Manager vulnerability. I...
The International Association of Cryptologic Researchâthe academic cryptography association thatâs been putting conferences like Crypto (back when âcryptoâ meant âcryptographyâ) and Eurocrypt since the 1980sâhad to nullify an online election when...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
YARA-X's 1.10.0 release brings a new command: fix warnings. If you have a rule that would generate a warning with a help section (explaining how to fix it), like this example rule: rule FixableCountWarning { strings: $a1 = "malicious" $a2 =...
Wireshark release 4.6.1 fixes 2 vulnerabilities and 20 bugs. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Mirage is an Active Directory DC. Iâll start by finding a domain name in a report on an open NFS server. That name is not registered in DNS, so Iâll register it pointing to my host, and use that to capture NATS credentials. Iâll use those to...
I did not know Adidas sold a sneaker called âSquid.â As usual, you can also use this squid post to talk about the security stories in the news that I havenât covered. Blog moderation policy.
Itâs been a month since Rewiring Democracy: How AI Will Transform Our Politics, Government, and Citizenship was published. From what we know, sales are good. Some of the bookâs forty-three chapters are available online: chapters 2, 12, 28, 34,...
From Anthropic: In mid-September 2025, we detected suspicious activity that later investigation determined to be a highly sophisticated espionage campaign. The attackers used AIâs âagenticâ capabilities to an unprecedented degreeÂâusing AI not...
From time to time, it can be instructive to look at generic phishing messages that are delivered to oneâs inbox or that are caught by basic spam filters. Although one usually doesnât find much of interest, sometimes these little excursions into...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
I did some tests with a Keelog keylogger, the AirDrive Forensic Keylogger: I wanted to find out how much power that keylogger requires. This is my test setup: This is the USB keyboard The USB cable of the keyboard is plugged into the USB breakout...
Aucun article de sécurité disponible