News U.S. convicts ex-Google engineer for sending AI tech data to China
A U.S. federal jury has convicted Linwei Ding, a former software engineer at Google, for stealing AI supercomputer data ...
AI
News 
News Viral Moltbot AI assistant raises concerns over data security
Security researchers are warning of insecure deployments in enterprise environments of the Moltbot (formerly Clawdbot) A...
News 1Password adds pop-up warnings for suspected phishing sites
The 1Password digital vault and password manager has added built-in protection against phishing URLs to help users ident...
News Malicious AI extensions on VSCode Marketplace steal developer data
Two malicious extensions in Microsoft’s Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 mil...
News Chainlit AI framework bugs let hackers breach cloud environments
Two high-severity vulnerabilities in Chainlit, a popular open-source framework for building conversational AI applicatio...
News New Android malware uses AI to click on hidden browser ads
A new family of Android click-fraud trojans leverages TensorFlow machine learning models to automatically detect and int...
News VoidLink cloud malware shows clear signs of being AI-generated
The recently discovered cloud-focused VoidLink malware framework is believed to have been developed by a single person w...
News Gemini AI assistant tricked into leaking Google Calendar data
Using only natural language instructions, researchers were able to bypass Google Gemini's defenses against malicious pro...
News リプロンプト攻撃によりマイクロソフト社のコパイロット・セッションが乗っ取られ、データが盗まれる
研究者は、攻撃者がユーザーのMicrosoft Copilotセッションに侵入し、機密データを流出させるコマンドを発行できる「Reprompt」と呼ばれる攻撃手法を特定した。 正規のURLの中に悪意のあるプロンプトを隠し、Copilotの保...
News ハッカー、誤った設定のプロキシで有料LLMサービスへのアクセスを狙う
攻撃者は、商用大規模言語モデル(LLM)サービスへのアクセスを提供する可能性のある、誤った設定のプロキシサーバーを組織的に探している。 12月下旬に開始されたキャンペーンでは、攻撃者は73以上のLLMエンドポイントを調査し、80,000以上...