Documentation can contain malicious instructions for agents
… Exposure to untrusted content is one of the three risks cited by developer Simon Willison in his lethal trifecta AI security model . …
Search
EFF has new boss, Nicole Ozer, to fight privacy-suckers
… "The stakes are higher than ever for the work that EFF does across strategy and across the world in defending and advancing rights and justice and democracy," said Ozer. …
Cheap Chinese models are overtaking Anthropic
… But it has alienated the current US administration and its effort to maintain model safety risks pushing away the security community and developers who do security work. …
Google: Spyware vendors, China-linked spies led 0-day abuse
… MORE CONTEXT Enterprise tech dominates zero-day exploits with no signs of slowdown The spyware business is booming despite government crackdowns Ex-L3Harris exec jailed 7 years for selling exploits to Russia Five Eyes warn: Patch your Cisco SD-WAN or risk root takeover Google Threat Intelligence Gr… …
Oracle may slash jobs to keep AI datacenter plans on track
… Banks in Asia appear more relaxed about Oracle's risk profile, TD Cowen says, but it reckons that US banks raising questions casts doubt over Big Red's ability to support its mammoth building program. …
Claude Desktop changes software permissions without consent
… But Hanff claims he never installed any Anthropic browser extensions due to privacy and security concerns. Claude Desktop did so for him, without disclosure or permission. Browser extensions magnify security and privacy challenges because they often request overly broad permissions. …
Switzerland built an alternative to BGP. Nobody noticed
… "You cannot bolt on security," says Perrig. …
Enterprise PCs are unreliable, unpatched, and unloved
… Omnissa’s State of Digital Workspace report suffers from the same problem as all research published by vendors in that its authors conclude its findings demonstrate many fine reasons reason why you should consider the company’s products. …
Two different attackers poisoned popular open source tools
… According to security experts, the incidents demonstrate the future of supply-chain attacks. …