NGINX servers hijacked in global campaign to redirect traffic

Redirected traffic can be abused in multiple ways, experts warn ...
Network World

Four new vulnerabilities found in Ingress NGINX

Four security vulnerabilities have been found in the open source Ingress NGINX traffic controller that is extensively used by organizations in Kubernetes deployments. They can only be fixed by ...
Harvard Medical School

Why AI Keeps Falling for Prompt Injection Attacks

Bruce Schneier and Barath Raghavan explore why LLMs struggle with context and judgment and, consequently, are vulnerable to prompt injection attacks. These 'attacks' are cases where LLMs are tricked ...
The New York Times

After Four Shark Attacks in 48 Hours, Australia Shuts Dozens of Beaches

Many of the closed beaches were in Sydney, the site of three of the attacks. By Laura Chung Reporting from Sydney, Australia Dozens of beaches in eastern Australia were closed on Tuesday, after four ...
Ars Technica

A single click mounted a covert, multistage attack against Copilot

Microsoft has fixed a vulnerability in its Copilot AI assistant that allowed hackers to pluck a host of sensitive user data with a single click on a legitimate URL. The hackers in this case were white ...
ABC News

Grandmother who died from shark attack in US Virgin Islands was 'genuinely kind': Neighbor

The victim was 56-year-old Arlene Lillis, authorities said. A 56-year-old Minnesota woman died from a shark attack Thursday afternoon at Dorsch Beach in the U.S. Virgin Islands, according to officials ...
Dark Reading

ChatGPT's Memory Feature Supercharges Prompt Injection

Some of the latest, best features of ChatGPT can be twisted to make indirect prompt injection (IPI) attacks more severe than they ever were before. That's according to researchers from Radware, who ...
Fox News

OpenAI admits AI browsers face unsolvable prompt attacks

Cybercriminals don't always need malware or exploits to break into systems anymore. Sometimes, they just need the right words in the right place. OpenAI is now openly acknowledging that reality. The ...
Democracy Now

U.S. Attacks Venezuela in “Large-Scale Attack”; President Maduro is Captured

This is viewer supported news. Please do your part today. U.S. forces have seized Venezuelan President Nicolas Maduro after U.S. forces launched what President Trump called a “large-scale attack.” ...
TechCrunch

OpenAI says AI browsers may always be vulnerable to prompt injection attacks

Even as OpenAI works to harden its Atlas AI browser against cyberattacks, the company admits that prompt injections, a type of attack that manipulates AI agents to follow malicious instructions often ...
Forbes

‘It May Be Worse’—No Fix For New Google Chrome Attacks

Welcome to the future — but be careful. “Billions of people trust Chrome to keep them safe,” Google says, adding that "the primary new threat facing all agentic browsers is indirect prompt injection.” ...
Computer Weekly

NCSC warns of confusion over true nature of AI prompt injection

The UK’s National Cyber Security Centre (NCSC) has highlighted a potentially dangerous misunderstanding surrounding emergent prompt injection attacks against generative artificial intelligence (GenAI) ...