Project Zero: Using large language models to catch vulnerabilities in real-world code
7
votes
Showing only topics in ~tech with the tag "vulnerabilities".
Back to normal view /
Search all groups
-
-
SS7: A mobile network operator protocol with scary vulnerabilities
29 votes -
Bypassing airport security via SQL injection
54 votes -
Maximum-severity Cisco vulnerability allows attackers to change admin passwords
26 votes -
Cyber security: A pre-war reality check
34 votes -
‘TunnelVision’ attack leaves nearly all VPNs vulnerable to spying
40 votes -
The not-so-silent type. Vulnerabilities across keyboard apps reveal keystrokes to network eavesdroppers.
9 votes -
Hackers can infect network-connected wrenches to install ransomware, researchers say
28 votes -
All cops are broadcasting. TETRA unlocked after decades in the shadows.
26 votes -
Incomplete disclosures by Apple and Google create “huge blindspot” for 0-day hunters
13 votes -
WinRAR zero-day exploited since April to hack trading accounts
31 votes -
A data breach at Christie’s revealed exact GPS coordinates of collectors’ artworks
25 votes -
Hackers exploited a zero-day flaw in Ivanti's software undetected for at least three months, US and Norwegian cybersecurity agencies warn
14 votes -
Apple fixes zero-days used to deploy Triangulation spyware via iMessage
8 votes -
Prompt injection: What’s the worst that can happen?
8 votes -
Prompt injection attacks against GPT-3
14 votes -
New Chrome 0-day bug under active attack
12 votes -
How to find dangerous Log4j libraries
1 vote -
SolarWinds: New findings from our investigation of SUNBURST
6 votes -
Achilles: Over 400 vulnerabilities found in Qualcomm’s Snapdragon DSP chip, threatening the security of hundreds of millions of Android devices
17 votes -
Edison Mail vulnerability allowing unauthorized access to email accounts of other users
4 votes -
Analysis of Voatz mobile voting app by MIT researchers finds elementary security flaws
11 votes -
Firefox zero-day was used in attack against Coinbase employees, not its users
11 votes -
'RAMBleed' Rowhammer attack can now steal data, not just alter it
7 votes -
Intel tried to bribe reseachers to downplay the severity of MDS vulnerability
19 votes -
WhatsApp voice calls contained a buffer-overflow vulnerability that was used to install spyware [CVE-2019-3568]
11 votes -
Multiple problems found out in FlatPak
11 votes -
Vodafone denies Huawei Italy security risk
8 votes -
Chrome update on March 1 fixed a serious zero-day RCE vulnerability that was being actively exploited
10 votes -
All Intel chips open to new Spoiler non-Spectre attack: Don't expect a quick fix
23 votes -
Swiss e-voting trial offers $150,000 in bug bounties to hackers
11 votes -
How I abused 2FA to maintain persistence after a password change (Google, Microsoft, Instagram, Cloudflare, etc)
16 votes -
Facebook says new bug allowed apps access to private photos of up to 6.8m users
33 votes -
Intel reverses controversial update license
19 votes