infossl – Page 6 – SSL and internet security news

Taxonomy of Generative AI Misuse

August 12, 2024 infossl

academic papers, artificial intelligence, Security technology, taxonomies, Uncategorized

Interesting paper: “Generative AI Misuse: A Taxonomy of Tactics and Insights from Real-World Data“: Generative, multimodal artificial intelligence (GenAI) offers transformative potential across industries, but its misuse poses significant risks. Prior research has shed light on the potential of advanced AI systems to be exploited for malicious purposes. However, we still lack a concrete understanding … Read More “Taxonomy of Generative AI Misuse” »

Friday Squid Blogging: SQUID Is a New Computational Tool for Analyzing Genomic AI

August 9, 2024 infossl

artificial intelligence, Security technology, squid, Uncategorized

Yet another SQUID acronym: SQUID, short for Surrogate Quantitative Interpretability for Deepnets, is a computational tool created by Cold Spring Harbor Laboratory (CSHL) scientists. It’s designed to help interpret how AI models analyze the genome. Compared with other analysis tools, SQUID is more consistent, reduces background noise, and can lead to more accurate predictions about … Read More “Friday Squid Blogging: SQUID Is a New Computational Tool for Analyzing Genomic AI” »

People-Search Site Removal Services Largely Ineffective

August 9, 2024 infossl

privacy, reports, searches, Security technology, Uncategorized

Consumer Reports has a new study of people-search site removal services, concluding that they don’t really work: As a whole, people-search removal services are largely ineffective. Private information about each participant on the people-search sites decreased after using the people-search removal services. And, not surprisingly, the removal services did save time compared with manually opting … Read More “People-Search Site Removal Services Largely Ineffective” »

Problems with Georgia’s Voter Registration Portal

August 7, 2024 infossl

fraud, Georgia, identification, national security policy, Security technology, Uncategorized, voting

It’s possible to cancel other people’s voter registration: On Friday, four days after Georgia Democrats began warning that bad actors could abuse the state’s new online portal for canceling voter registrations, the Secretary of State’s Office acknowledged to ProPublica that it had identified multiple such attempts… …the portal suffered at least two security glitches that … Read More “Problems with Georgia’s Voter Registration Portal” »

On the Cyber Safety Review Board

August 6, 2024 infossl

computer security, cybersecurity, hacking, Security technology, Uncategorized

When an airplane crashes, impartial investigatory bodies leap into action, empowered by law to unearth what happened and why. But there is no such empowered and impartial body to investigate CrowdStrike’s faulty update that recently unfolded, ensnarling banks, airlines, and emergency services to the tune of billions of dollars. We need one. To be sure, … Read More “On the Cyber Safety Review Board” »

New Patent Application for Car-to-Car Surveillance

August 5, 2024 infossl

cars, patents, police, Security technology, Uncategorized

Ford has a new patent application for a system where cars monitor each other’s speeds, and then report then to some central authority. Slashdot thread. Powered by WPeMatico

Friday Squid Blogging: Treating Squid Parasites

August 2, 2024 infossl

Security technology, squid, Uncategorized

A newly discovered parasite that attacks squid eggs has been treated. Blog moderation policy. Powered by WPeMatico

Leaked GitHub Python Token

August 2, 2024 infossl

leaks, security analysis, Security technology, supply chain, Uncategorized

Here’s a disaster that didn’t happen: Cybersecurity researchers from JFrog recently discovered a GitHub Personal Access Token in a public Docker container hosted on Docker Hub, which granted elevated access to the GitHub repositories of the Python language, Python Package Index (PyPI), and the Python Software Foundation (PSF). JFrog discussed what could have happened: The … Read More “Leaked GitHub Python Token” »

Education in Secure Software Development

August 1, 2024 infossl

security education, Security technology, software, Uncategorized

The Linux Foundation and OpenSSF released a report on the state of education in secure software development. …many developers lack the essential knowledge and skills to effectively implement secure software development. Survey findings outlined in the report show nearly one-third of all professionals directly involved in development and deployment system operations, software developers, committers, … Read More “Education in Secure Software Development” »

Nearly 7% of Internet Traffic Is Malicious

July 31, 2024 infossl

denial of service, malware, Security technology, spam, Uncategorized, vulnerabilities

Cloudflare reports on the state of applications security. It claims that 6.8% of Internet traffic is malicious. And that CVEs are exploited as quickly as 22 minutes after proof-of-concepts are published. News articles. Powered by WPeMatico