Recent Security News
-
Cloudflare wants to put a firewall in front of your LLM
March 4, 2024 at 08:41PM Cloudflare introduces “Firewall for AI,” offering Advanced Rate Limiting to prevent DDoS attacks and Sensitive Data Detection to protect against data leaks. The feature also allows customization of information disclosure, with plans to include prompt validation and offensive topic blocking. It applies to both public and private language models proxied…
-
Seoul Spies Say North Korea Hackers Stole Semiconductor Secrets
March 4, 2024 at 06:31PM North Korean hackers stole South Korean microchip manufacturing technology, prompting NIS to call for improved cyber defenses. The hackers compromised the servers of two microchip manufacturers and stole semiconductor designs and facility photos. NIS believes North Korea may be preparing to produce its own semiconductors due to sanctions. Based on…
-
Critical TeamCity Bugs Endanger Software Supply Chain
March 4, 2024 at 06:09PM TeamCity’s cloud versions are already patched against new critical vulnerabilities, but on-premises deployments require immediate patching, warns the vendor. The platform, used by major organizations including Citibank and Nike, manages the software development CI/CD pipeline. The vulnerabilities (CVE-2024-27198 and CVE-2024-27199) could enable threat actors to bypass authentication and gain admin…
-
Zero-Click GenAI Worm Spreads Malware, Poisoning Models
March 4, 2024 at 06:02PM A worm known as “Morris II” exploits generative AI (GenAI) apps to propagate malware, stealing information, spreading spam, and more. Israeli researchers demonstrated how adversarial self-replicating prompts can manipulate AI, infecting systems via email and images. This presents a new threat to AI security, similar to injection attacks in computing’s…