AI code helpers just can’t stop inventing package names

September 30, 2024 at 12:04AM Two recent studies highlight the issue of AI models generating fictitious software package names, raising concerns about the potential security risks. Researchers found that LLMs, including commercial and open-source models, exhibited significant rates of hallucinated package names, posing a threat to code quality and reliability. The studies emphasize the need … Read more

DARPA Aims to Ditch C Code, Move to Rust

August 13, 2024 at 08:41AM DARPA plans to fund a project called TRACTOR, aiming to develop an automated translator to convert old C code to Rust. The initiative seeks to address memory-safety vulnerabilities and reduce the labor and cost of rewriting code. The project aims to create high-quality Rust code and is expected to face … Read more

Gh0st RAT Trojan Targets Chinese Windows Users via Fake Chrome Site

July 29, 2024 at 02:18AM The Gh0st RAT is being delivered to Chinese-speaking Windows users by the Gh0stGambit evasive dropper through a drive-by download scheme. The infection originates from a fake website masquerading as Google’s Chrome browser. The malware is capable of various malicious activities, and the distribution via drive-by downloads highlights the need for … Read more

Apple Intelligence Could Introduce Device Security Risks

June 14, 2024 at 03:45PM Apple’s announcement of its generative AI capabilities, called Apple Intelligence, emphasized data security and privacy. The system enables context-sensitive searches, email tone editing, and graphics creation locally on devices. While Apple detailed privacy and security measures, challenges with large language models and app interactions remain. Companies need to address potential … Read more

Why I Chose Google Bard to Help Write Security Policies

December 19, 2023 at 01:05PM Large language models (LLMs) such as ChatGPT have found various uses in enterprise security, from log analysis to rewriting documentation. Google Bard is being tested for simplifying and rewriting security policies. It offers unique features such as authoritative language and multiple draft options, making it a valuable tool for creating … Read more

Saudi Cyber Students Team with Bahrain to Assess AI Security & Risk

December 13, 2023 at 01:25PM Saudi Arabian students from King Fahd University of Petroleum and Minerals are collaborating with industry to research and assess large language models. Specializing in AI and cybersecurity, they attended workshops at Nasser Vocational Training Centre in Bahrain to enhance their skills in risk assessment and network security using Amazon Cloud … Read more

GitHub Enhances Security Capabilities With AI

November 8, 2023 at 12:15PM GitHub has announced the public preview of three new AI-powered features in GitHub Advanced Security. These features include AI-generated fixes for code alerts, identification of leaked passwords, and improved security overview dashboards. Additionally, GitHub released its Octoverse report, revealing a significant increase in developers building open source generative AI projects. … Read more

Middle East Advances in Generative AI Hold Promise

November 2, 2023 at 01:07PM The Persian Gulf region is focusing on generative AI and large language models (LLMs) to drive progress and become a global leader in AI. OpenAI has partnered with G42 to promote AI adoption in the UAE and Middle East. The economic impact of GenAI in the region is estimated to … Read more