☆ Yσɠƚԋσʂ ☆@lemmy.mlEnglish · 7 months agoA dozen+ RCEs on popular LLM framework libraries like LangChain and LlamaIndex - used in lots of chat-assisted apps including GitHubplus-squaremastodon.socialexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkA dozen+ RCEs on popular LLM framework libraries like LangChain and LlamaIndex - used in lots of chat-assisted apps including GitHubplus-squaremastodon.social☆ Yσɠƚԋσʂ ☆@lemmy.mlEnglish · 7 months agomessage-square0fedilink
lemmyreader@lemmy.mlEnglish · 7 months agoAfter XZ Utils, More Open-Source Maintainers Under Attackplus-squarewww.bankinfosecurity.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkAfter XZ Utils, More Open-Source Maintainers Under Attackplus-squarewww.bankinfosecurity.comlemmyreader@lemmy.mlEnglish · 7 months agomessage-square0fedilink
lemmyreader@lemmy.mlEnglish · edit-27 months agoPuTTY priority high vulnerability CVE-2024-31497plus-squarehachyderm.ioexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkPuTTY priority high vulnerability CVE-2024-31497plus-squarehachyderm.iolemmyreader@lemmy.mlEnglish · edit-27 months agomessage-square0fedilink
☆ Yσɠƚԋσʂ ☆@lemmy.mlEnglish · 7 months agoGmail And YouTube Hackers Bypass Google’s 2FA Account Securityplus-squarewww.forbes.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkGmail And YouTube Hackers Bypass Google’s 2FA Account Securityplus-squarewww.forbes.com☆ Yσɠƚԋσʂ ☆@lemmy.mlEnglish · 7 months agomessage-square0fedilink
lemmyreader@lemmy.mlEnglish · 7 months agoNew Technique Detected in an Open Source Supply Chain Attackplus-squarecheckmarx.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkNew Technique Detected in an Open Source Supply Chain Attackplus-squarecheckmarx.comlemmyreader@lemmy.mlEnglish · 7 months agomessage-square0fedilink
lemmyreader@lemmy.ml · 7 months agoNew Spectre v2 attack impacts Linux systems on Intel CPUsplus-squarewww.bleepingcomputer.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkNew Spectre v2 attack impacts Linux systems on Intel CPUsplus-squarewww.bleepingcomputer.comlemmyreader@lemmy.ml · 7 months agomessage-square0fedilink
lemmyreader@lemmy.mlEnglish · 7 months agoWhere The Wild Things Are: Brute-Force SSH Attacks In The Wild And How To Stop Themplus-squarewww.flux.utah.eduexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkWhere The Wild Things Are: Brute-Force SSH Attacks In The Wild And How To Stop Themplus-squarewww.flux.utah.edulemmyreader@lemmy.mlEnglish · 7 months agomessage-square0fedilink
Rustmilian@lemmy.worldEnglish · 7 months agoRunning the “Reflections on Trusting Trust” Compilerplus-squareresearch.swtch.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkRunning the “Reflections on Trusting Trust” Compilerplus-squareresearch.swtch.comRustmilian@lemmy.worldEnglish · 7 months agomessage-square0fedilink
Arthur Besse@lemmy.mlEnglish · 7 months agoThe Bootstrapping Exam: Escaping from “Trusting Trust”www.devever.netexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkThe Bootstrapping Exam: Escaping from “Trusting Trust”www.devever.netArthur Besse@lemmy.mlEnglish · 7 months agomessage-square0fedilink
Rustmilian@lemmy.worldEnglish · 7 months agoGParted Live Is Now Patched Against the XZ Backdoor, Powered by Linux Kernel 6.7plus-square9to5linux.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkGParted Live Is Now Patched Against the XZ Backdoor, Powered by Linux Kernel 6.7plus-square9to5linux.comRustmilian@lemmy.worldEnglish · 7 months agomessage-square0fedilink
Rustmilian@lemmy.worldEnglish · 7 months agoThoughts on the xz backdoor: an lzma-rs perspective | Blogplus-squaregendignoux.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkThoughts on the xz backdoor: an lzma-rs perspective | Blogplus-squaregendignoux.comRustmilian@lemmy.worldEnglish · 7 months agomessage-square0fedilink
Rustmilian@lemmy.worldEnglish · 7 months agoSecurity advisory for the standard library (CVE-2024-24576)plus-squareblog.rust-lang.orgexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkSecurity advisory for the standard library (CVE-2024-24576)plus-squareblog.rust-lang.orgRustmilian@lemmy.worldEnglish · 7 months agomessage-square0fedilink
Rustmilian@lemmy.worldEnglish · 7 months agoCritical Rust flaw enables Windows command injection attacksplus-squarewww.bleepingcomputer.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkCritical Rust flaw enables Windows command injection attacksplus-squarewww.bleepingcomputer.comRustmilian@lemmy.worldEnglish · 7 months agomessage-square0fedilink
lemmyreader@lemmy.mlEnglish · 7 months agoXZ Utils backdoor - Wikipediaplus-squareen.wikipedia.orgexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkXZ Utils backdoor - Wikipediaplus-squareen.wikipedia.orglemmyreader@lemmy.mlEnglish · 7 months agomessage-square0fedilink
Otto@programming.devEnglish · 7 months agoToday marks the 10th anniversary of the Heartbleed vulnerability in OpenSSL, which had the same ultimate root cause as recent XZUtils backdoor incidentplus-squaremedium.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkToday marks the 10th anniversary of the Heartbleed vulnerability in OpenSSL, which had the same ultimate root cause as recent XZUtils backdoor incidentplus-squaremedium.comOtto@programming.devEnglish · 7 months agomessage-square0fedilink
lemmyreader@lemmy.mlEnglish · 7 months agoAmazon storing classified US government documents improperlyplus-squarelemmy.mlimagemessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1imageAmazon storing classified US government documents improperlyplus-squarelemmy.mllemmyreader@lemmy.mlEnglish · 7 months agomessage-square0fedilink
Atemu@lemmy.ml · 7 months agobackdoor in upstream xz/liblzma leading to ssh server compromisewww.openwall.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkbackdoor in upstream xz/liblzma leading to ssh server compromisewww.openwall.comAtemu@lemmy.ml · 7 months agomessage-square0fedilink
NinjaZ@infosec.pub · 8 months agoHigh Court orders temporary suspension of Telegram's services in Spainplus-squarewww.reuters.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkHigh Court orders temporary suspension of Telegram's services in Spainplus-squarewww.reuters.comNinjaZ@infosec.pub · 8 months agomessage-square0fedilink
overflow@lemmy.ml · 8 months agoSIM swappers hijacking phone numbers in eSIM attacksplus-squarewww.bleepingcomputer.comexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkSIM swappers hijacking phone numbers in eSIM attacksplus-squarewww.bleepingcomputer.comoverflow@lemmy.ml · 8 months agomessage-square0fedilink
NinjaZ@infosec.pub · 8 months agoDebunking the Myth of “Anonymous” Dataplus-squarewww.eff.orgexternal-linkmessage-square0fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkDebunking the Myth of “Anonymous” Dataplus-squarewww.eff.orgNinjaZ@infosec.pub · 8 months agomessage-square0fedilink
