home.social
Sign in Create account

#vulnerabilities — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #vulnerabilities, aggregated by home.social.

  1. Schneier on Security RSS @[email protected] ·

    How Dangerous Is Anthropic’s Mythos AI?

    Last month, Anthropic made a remarkable announcement about its new model, Claude Mythos Preview: it was so good at finding security vulnerabilities in software that the company would not... schneier.com/blog/archives/202

    #vulnerabilities #Uncategorized #regulation #patching #hacking #laws #LLM #AI

    #vulnerabilities #uncategorized #regulation #patching #hacking #laws
  2. Schneier on Security RSS @[email protected] ·

    OpenAI’s GPT-5.5 is as Good as Mythos at Finding Security Vulnerabilities

    The UK’s AI Security Institute evaluated GPT-5.5’s ability to find security vulnerabilities, and found that it is comparable to Claude Myth... schneier.com/blog/archives/202

    #vulnerabilities #Uncategorized #AI

    #vulnerabilities #uncategorized #ai
  3. Steven Saus [he/him] @[email protected] ·
    CW: socialmedia

    Linux bitten by second severe vulnerability in as many weeks

    Production-version patches are coming online and should be installed pronto.

    Archive: ia: s.faithcollapsing.com/wai9z

    #biz-&-it #exploits #linux #security #vulnerabilities
    arstechnica.com/security/2026/

    #biz #exploits #linux #security #vulnerabilities
  4. Hacker News @[email protected] ·

    CERT is releasing six CVEs for serious security vulnerabilities in dnsmasq

    lists.thekelleys.org.uk/piperm

    #HackerNews #CERT #CVEs #dnsmasq #security #vulnerabilities #cybersecurity #patches

    #hackernews #cert #cves #dnsmasq #security #vulnerabilities
  5. Christian Noll @[email protected] ·

    Mass npm Supply Chain Attack Hits TanStack, Mistral AI, and 170+ Packages (safedep.io)

    safedep.io/mass-npm-supply-cha

    #security #supplychain #npm #vulnerabilities #attack #programming

    #programming #attack #vulnerabilities #npm #supplychain #security
  6. Christian Noll @[email protected] ·

    Mass npm Supply Chain Attack Hits TanStack, Mistral AI, and 170+ Packages (safedep.io)

    safedep.io/mass-npm-supply-cha

    #security #supplychain #npm #vulnerabilities #attack #programming

    #programming #attack #vulnerabilities #npm #supplychain #security
  7. Schneier on Security RSS @[email protected] ·

    Copy.Fail Linux Vulnerability

    This is the worst Linux vulnerability in years.
    TL;DR

    copy.fail is a Linux kernel local privilege escala... schneier.com/blog/archives/202

    #vulnerabilities #Uncategorized #patching #Linux

    #vulnerabilities #uncategorized #patching #linux
  8. Inautilo @[email protected] ·

    #Development #Relaunches
    Vulnerability Garden · A living catalog of named vulnerabilities ilo.im/16cpnx

    _____
    #Collections #Vulnerabilities #Attacks #Exploits #Security #RSS #DevOps #WebDev #Frontend #Backend

    #development #relaunches #collections #vulnerabilities #attacks #exploits
  9. Inautilo @[email protected] ·

    #Development #Relaunches
    Vulnerability Garden · A living catalog of named vulnerabilities ilo.im/16cpnx

    _____
    #Collections #Vulnerabilities #Attacks #Exploits #Security #RSS #DevOps #WebDev #Frontend #Backend

    #development #relaunches #collections #vulnerabilities #attacks #exploits
  10. Inautilo @[email protected] ·

    #Development #Relaunches
    Vulnerability Garden · A living catalog of named vulnerabilities ilo.im/16cpnx

    _____
    #Collections #Vulnerabilities #Attacks #Exploits #Security #RSS #DevOps #WebDev #Frontend #Backend

    #backend #frontend #webdev #devops #rss #security
  11. Inautilo @[email protected] ·

    #Development #Relaunches
    Vulnerability Garden · A living catalog of named vulnerabilities ilo.im/16cpnx

    _____
    #Collections #Vulnerabilities #Attacks #Exploits #Security #RSS #DevOps #WebDev #Frontend #Backend

    #development #relaunches #collections #vulnerabilities #attacks #exploits
  12. Hacker News @[email protected] ·

    CPanel's Black Week: 3 New Vulnerabilities Patched After Attack on 44k Servers

    copahost.com/blog/cpanels-blac

    #HackerNews #CPanel #Vulnerabilities #BlackWeek #Cybersecurity #Ransomware #ServerSecurity

    #hackernews #cpanel #vulnerabilities #blackweek #cybersecurity #ransomware
  13. Truth Collector @[email protected] ·

    @renardboy A tangential #phrase comes to mind:

    "Having too many hammers..." might mean:

    1- if you sell more #hammers then they get used more and do more damage

    2- if you give #intelligent people lots of hammers it wouldn't make a difference because they just won't use them / leave them alone in storage.

    (so coming back to your post - intelligent society wouldn't attack things so much / at all even if #vulnerabilities existed (and having hammers).

    Writing in short is hard - I tried !

    #phrase #hammers #intelligent #vulnerabilities
  14. deepseek @[email protected] ·
    Huawei Cloud and GAPP Forge Strategic Alliance to Accelerate AI-Driven Cloud Solutions in Saudi Arabia Huawei Cloud and GAPP Forge Strategic Alliance to Accelerate AI-Driven Cloud Solutions in Saud...

    #Features #Cyber #Warriors #Risk #& #Policy #threat #landscape #Vulnerabilities

    Origin | Interest | Match
    #features #cyber #warriors #risk #policy #threat
  15. Alex Diker @[email protected] ·

    I don't use it anyway but #TheHackerNews: [#cPanel, #WHM Release Fixes for Three New #Vulnerabilities — Patch Now]Source: 🔗(thehackernews.com/2026/05/cpan) #security #updates #patches

    #whm #vulnerabilities #thehackernews #security #updates #patches
  16. Alex Diker @[email protected] ·

    I don't use it anyway but #TheHackerNews: [#cPanel, #WHM Release Fixes for Three New #Vulnerabilities — Patch Now]Source: 🔗(thehackernews.com/2026/05/cpan) #security #updates #patches

    #whm #vulnerabilities #thehackernews #security #updates #patches
  17. Alex Diker @[email protected] ·

    New post in #TheHackerNews: [#cPanel, #WHM Release Fixes for Three New #Vulnerabilities — Patch Now]Source: 🔗(thehackernews.com/2026/05/cpan)

    #thehackernews #vulnerabilities #whm
  18. Alex Diker @[email protected] ·

    I don't use it anyway but #TheHackerNews: [#cPanel, #WHM Release Fixes for Three New #Vulnerabilities — Patch Now]Source: 🔗(thehackernews.com/2026/05/cpan) #security #updates #patches

    #whm #vulnerabilities #thehackernews #security #updates #patches
  19. Hacker News @[email protected] ·

    Non-determinism is an issue with patching CVEs

    flox.dev/blog/achieving-rapid-

    #HackerNews #Non-determinism #CVEs #patching #vulnerabilities #security #software #development

    #hackernews #non #cves #patching #vulnerabilities #security
  20. WIRED - The Latest in Technology, Science, Culture and Business [Unofficial] @[email protected] ·

    The Canvas Hack Is a New Kind of Ransomware Debacle

    fed.brid.gy/r/https://www.wire

    #security #securitycyberattacksandhacks #securityprivacy #securitysecuritynews #ransomware #cybersecurity
  21. WIRED - The Latest in Technology, Science, Culture and Business [Unofficial] @[email protected] ·

    The Canvas Hack Is a New Kind of Ransomware Debacle

    fed.brid.gy/r/https://www.wire

    #security #securitycyberattacksandhacks #securityprivacy #securitysecuritynews #ransomware #cybersecurity
  22. WIRED - The Latest in Technology, Science, Culture and Business [Unofficial] @[email protected] ·

    The Canvas Hack Is a New Kind of Ransomware Debacle

    fed.brid.gy/r/https://www.wire

    #dropout #vulnerabilities #hacking #hacks #malware #cybersecurity
  23. WIRED - The Latest in Technology, Science, Culture and Business [Unofficial] @[email protected] ·

    The Canvas Hack Is a New Kind of Ransomware Debacle

    fed.brid.gy/r/https://www.wire

    #security #securitycyberattacksandhacks #securityprivacy #securitysecuritynews #ransomware #cybersecurity
  24. Schneier on Security RSS @[email protected] ·

    DarkSword Malware

    DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS.
    Google Threat Intelligen... schneier.com/blog/archives/202

    #vulnerabilities #Uncategorized #cybercrime #exploits #zero-day #malware #Apple #iOS

    #vulnerabilities #uncategorized #cybercrime #exploits #zero #malware
  25. Schneier on Security RSS @[email protected] ·

    DarkSword Malware

    DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS.
    Google Threat Intelligen... schneier.com/blog/archives/202

    #vulnerabilities #Uncategorized #cybercrime #exploits #zero-day #malware #Apple #iOS

    #vulnerabilities #uncategorized #cybercrime #exploits #zero #malware
  26. Schneier on Security RSS @[email protected] ·

    DarkSword Malware

    DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS.
    Google Threat Intelligen... schneier.com/blog/archives/202

    #vulnerabilities #Uncategorized #cybercrime #exploits #zero-day #malware #Apple #iOS

    #vulnerabilities #uncategorized #cybercrime #exploits #zero #malware
  27. Schneier on Security RSS @[email protected] ·

    DarkSword Malware

    DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS.
    Google Threat Intelligen... schneier.com/blog/archives/202

    #vulnerabilities #Uncategorized #cybercrime #exploits #zero-day #malware #Apple #iOS

    #ios #apple #malware #zero #exploits #cybercrime
  28. Schneier on Security RSS @[email protected] ·

    DarkSword Malware

    DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS.
    Google Threat Intelligen... schneier.com/blog/archives/202

    #vulnerabilities #Uncategorized #cybercrime #exploits #zero-day #malware #Apple #iOS

    #vulnerabilities #uncategorized #cybercrime #exploits #zero #malware
  29. PrivacyDigest @[email protected] ·

    #Disneyland Now Uses #FaceRecognition on Visitors

    Plus: The #NSA tests Anthropic’s #Mythos Preview to find #vulnerabilities , a #Finnish teen is charged over the #ScatteredSpider #hacking spree, and more.
    #privacy #security #anthropic #biometrics #ai

    wired.com/story/security-news-

    #ai #biometrics #anthropic #security #privacy #hacking
  30. PrivacyDigest @[email protected] ·

    Dangerous New #Linux #Exploit Gives Attackers #Root Access to Countless Computers

    The exploit, dubbed #CopyFail and tracked as CVE-2026-31431, allows #hackers to take over PCs and data center #servers. The Linux #vulnerabilities have been patched—but many machines remain at risk.
    #security #cve202631431

    wired.com/story/dangerous-new-

    #cve202631431 #security #vulnerabilities #servers #hackers #copyfail
  31. deepseek @[email protected] ·
    Lawmakers open inquiry into cybersecurity risks posed by PRC-origin AI models deployed in critical infrastructure systems The U.S. House Committee on Homeland Security and the House Select Committe...

    #AI #Attacks #and #Vulnerabilities #Critical #infrastructure #Malware, #Phishing #& #Ransomware #News

    Origin | Interest | Match
    #ai #attacks #and #vulnerabilities #critical #infrastructure
  32. Bytes Europe @[email protected] ·

    MITRE flags rising cyber risks as medical devices adopt AI, cloud and post-quantum technologies byteseu.com/1974816/ #AI #Algorithms #cryptography #CyberRisk #cyberattacks #CybersecurityControls #CybersecurityRisk #CybersecurityThreats #HDOs #Healthcare #Medical #MedicalDevice #MedicalDeviceManufacturers #mitre #ML #QuantumComputing #RiskManagement #SBOM #Technology #ThreatLandscape #vulnerabilities

    #vulnerabilities #threatlandscape #technology #sbom #riskmanagement #quantumcomputing
  33. Energy @[email protected] ·

    OT-ISAC flags rising energy sector cyber risk as OT exposure spreads beyond control rooms into distributed assets

    The OT Cybersecurity Information Sharing and Analysis Center…
    #Energy #accesspathway #BESS #cyberrisk #DERplatforms #Distributedenergy #energycyber #energycybersecurity #energygrid #energysector #engineeringworkstation #EVSE #industrialransomware #OCPP #OTsystems #OT-ISAC #PLCs #RemoteAccess #renewableenergy #RTUs #threatlandscape #vulnerabilities
    europesays.com/2951314/

    #vulnerabilities #threatlandscape #rtus #renewableenergy #remoteaccess #plcs
  34. Bytes Europe @[email protected] ·

    OT-ISAC flags rising energy sector cyber risk as OT exposure spreads beyond control rooms into distributed assets byteseu.com/1972028/ #AccessPathway #BESS #CyberRisk #DERPlatforms #DistributedEnergy #Energy #EnergyCyber #EnergyCybersecurity #EnergyGrid #EnergySector #EngineeringWorkstation #EVSE #IndustrialRansomware #OCPP #OTSystems #OTISAC #PLCs #RemoteAccess #RenewableEnergy #RTUs #ThreatLandscape #vulnerabilities

    #vulnerabilities #threatlandscape #rtus #renewableenergy #remoteaccess #plcs
  35. Hacker News @[email protected] ·

    The Woes of Sanitizing SVGs

    muffin.ink/blog/scratch-svg-sa

    #HackerNews #SVG #Sanitization #Security #Vulnerabilities #Web #Development #Coding #Best #Practices

    #hackernews #svg #sanitization #security #vulnerabilities #web
  36. Steven Saus [he/him] @[email protected] ·

    Microsoft issues emergency update for macOS and Linux ASP.NET threat

    When authentication fails, things can go very, very wrong.

    #asp.net #biz-&-it #microsoft #security #vulnerabilities #windows
    arstechnica.com/security/2026/

    #asp #biz #microsoft #security #vulnerabilities #windows
  37. N-gated Hacker News @[email protected] ·

    🚨 Breaking: #NIST throws in the towel on enriching CVEs! 🎉 Because, why bother making #vulnerabilities understandable when we can just drown 'em in alphabet soup? 🍜💻 Clearly, "keep it simple" is a foreign concept. 🙄
    risky.biz/risky-bulletin-nist- #CVE #simplification #tech #news #cybersecurity #humor #HackerNews #ngated

    #nist #vulnerabilities #cve #simplification #tech #news
  38. AIagent.at 🤖 AI News @[email protected] ·

    #Cal is moving its flagship #opensource programme to a #proprietary model due to the increasing threat of #AIhacking. The company believes that open-source code, while transparent, is now #vulnerable to #AI tools that can easily find #vulnerabilities. Despite this move, Cal remains committed to open source and has released Cal.diy, a fully open-source version for hobbyists. zdnet.com/article/ai-security- #AIagent #AI #ML #NLP #LLM #GenAI

    #cal #opensource #proprietary #aihacking #vulnerable #ai
  39. Hacker News @[email protected] ·

    N-Day-Bench – Can LLMs find real vulnerabilities in real codebases?

    ndaybench.winfunc.com

    #HackerNews #NDayBench #LLM #vulnerabilities #codebases #cybersecurity #machinelearning

    #hackernews #ndaybench #llm #vulnerabilities #codebases #cybersecurity
  40. Hacker News @[email protected] ·

    N-Day-Bench – Can LLMs find real vulnerabilities in real codebases?

    ndaybench.winfunc.com

    #HackerNews #NDayBench #LLM #vulnerabilities #codebases #cybersecurity #machinelearning

    #hackernews #ndaybench #llm #vulnerabilities #codebases #cybersecurity
  41. Hacker News @[email protected] ·

    N-Day-Bench – Can LLMs find real vulnerabilities in real codebases?

    ndaybench.winfunc.com

    #HackerNews #NDayBench #LLM #vulnerabilities #codebases #cybersecurity #machinelearning

    #hackernews #ndaybench #llm #vulnerabilities #codebases #cybersecurity
  42. Hacker News @[email protected] ·

    N-Day-Bench – Can LLMs find real vulnerabilities in real codebases?

    ndaybench.winfunc.com

    #HackerNews #NDayBench #LLM #vulnerabilities #codebases #cybersecurity #machinelearning

    #machinelearning #cybersecurity #codebases #vulnerabilities #llm #ndaybench
  43. Hacker News @[email protected] ·

    N-Day-Bench – Can LLMs find real vulnerabilities in real codebases?

    ndaybench.winfunc.com

    #HackerNews #NDayBench #LLM #vulnerabilities #codebases #cybersecurity #machinelearning

    #hackernews #ndaybench #llm #vulnerabilities #codebases #cybersecurity
  44. usd AG @[email protected] ·

    The pentest professionals at #usdHeroLab identified a vulnerability in #EntraID during a cloud #pentest that allows the circumvention of conditional access policies for privileged identities.

    Two additional vulnerabilities were identified during a web application pentest of #Tenable Nessus Manager, which allow low-privileged users to read arbitrary files at the operating system level.

    All #vulnerabilities were reported to the vendors as part of our Responsible Disclosure policy.

    🔎 You can find detailed information on the #SecurityAdvisories here: usd.de/en/security-advisories-

    #SecurityResearch #SecurityAdvisory #moresecurity #NessusManager #Pentesting #Hacking #CVE_2026_3493 #AppSec #InfoSec #CyberSecurity

    #usdherolab #entraid #pentest #tenable #vulnerabilities #securityadvisories
  45. Energy @[email protected] ·

    DOE allocates $160 million to secure energy systems as cyber threats converge with grid modernization

    The U.S. Department of Energy’s FY 2027 budget frames cybersecurity as a core pillar of national energy security,…
    #Energy #AI #ceser #cyberattacks #cyberthreats #Cybersecurity #cybersecurityprotocol #Datacenters #DOE #energyinfrastructure #energysystems #FERC #gridmodernization #manufacturing #supplychain #vulnerabilities #zerotrust
    europesays.com/2906733/

    #zerotrust #vulnerabilities #supplychain #manufacturing #gridmodernization #ferc
  46. Jesus Castagnetto 🇵🇪 @[email protected] ·

    "The Big Bang: A.I. Has Created a #Code #Overload"

    '... The sheer amount of code being delivered, and the increase in #vulnerabilities, is something they can’t keep up with ...'

    #AI #VibeCoding #Security #AISlop

    nytimes.com/2026/04/06/technol

    #code #overload #vulnerabilities #ai #vibecoding #security
  47. Bytes Europe @[email protected] ·

    Australia consults industry on reforms that would give authorities faster powers during critical infrastructure attacks byteseu.com/1910927/ #Australia #CriticalInfrastructureAttacks #CyberResilience #CyberThreats #CyberAttacks #NationalSecurity #SOCIAct #SupplyChain #telecommunications #ThreatLandscape #vulnerabilities

    #vulnerabilities #threatlandscape #telecommunications #supplychain #sociact #nationalsecurity
  48. robrich @[email protected] ·

    red.anthropic.com/2026/zero-da - #LLMs are good at finding #0Day #security #vulnerabilities. So now what?

    #0day #security #vulnerabilities #llms
  49. deepseek @[email protected] ·
    Booz Allen warns AI‑driven cyberattacks outpace human-driven defenses across critical infrastructure A new report from Booz Allen Hamilton warns that cybersecurity is entering a ‘machine-speed...

    #AI #Attacks #and #Vulnerabilities #Control #device #security #Critical #infrastructure #Industrial #Cyber

    Origin | Interest | Match
    #ai #attacks #and #vulnerabilities #control #device
  50. Benjamin Carr, Ph.D. 👨🏻‍💻🧬 @[email protected] ·

    #Tesla exec tells Congress 'no one has ever' taken control of its vehicles — but that's not true
    In 2017, security researcher #JasonHughes (aka #WK057) discovered #vulnerabilities that gave him access to “Mothership”, Tesla’s central server used to communicate with entire fleet.
    Hughes was able to authenticate as any vehicle in Tesla’s fleet using just a #VIN. He had access to location data, vehicle info, and critically, the ability to send commands to any Tesla on road.
    electrek.co/2026/02/06/tesla-e

    #tesla #jasonhughes #wk057 #vulnerabilities #vin