November 15, 2024 at 05:24PM ChatGPT’s architecture may expose sensitive data and internal instructions, raising security concerns. Despite OpenAI’s claim of intentional design, experts warn this could enable malicious users to reverse-engineer vulnerabilities and access confidential information stored in custom GPTs. Users are cautioned to avoid uploading sensitive data due to potential leaks. ### Meeting … Read more
November 14, 2024 at 11:16AM Researcher Marco Figueroa identified vulnerabilities in OpenAI’s ChatGPT sandbox, allowing file uploads, Python script execution, and access to sensitive configurations. While interactions remain confined to the sandbox, these flaws could lead to reverse-engineering of security measures. OpenAI was notified but only expressed interest in one specific issue. ### Meeting Takeaways: … Read more
November 10, 2024 at 06:43PM Microsoft is addressing issues with macOS Sequoia causing applications to freeze when opening or saving files in OneDrive. Users are advised to force quit the OpenAndSavePanelService and save files elsewhere. Additionally, the company is investigating another problem related to file discoverability across both Windows and macOS. ### Meeting Takeaways: 1. … Read more
April 9, 2024 at 11:37AM Researchers at Varonis have uncovered two techniques for attackers to evade SharePoint audit logs when downloading files. By using the “Open in App” feature or spoofing the User-Agent string, they can generate less severe or misleading events. Microsoft has acknowledged these issues but rated them as moderate, so organizations are … Read more