Weekly Update 468
Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite […]
Security
Friday Squid Blogging: The Origin and Propagation of Squid
New research (paywalled): Editor’s summary: Cephalopods are one of the most successful marine invertebrates in modern oceans, and they have
Security
My Latest Book: Rewiring Democracy
I am pleased to announce the imminent publication of my latest book, Rewiring Democracy: How AI will Transform our Politics,
Security
GPT-4o-mini Falls for Psychological Manipulation
Interesting experiment: To design their experiment, the University of Pennsylvania researchers tested 2024’s GPT-4o-mini model on two requests that it
Security
Why Code Signing Certificates Are Essential for Software Developers and Vendors
Modern software development is complex with continuous code development, deployment, and updates. As a software developer or vendor, you don’t
Security
Generative AI as a Cybercrime Assistant
Anthropic reports on a Claude user: We recently disrupted a sophisticated cybercriminal that used Claude Code to commit large-scale theft
Security
Reflecting on Wallarm’s Journey: Growth, Resilience, and What Comes Next
By Ivan Novikov and Stepan Ilyin When we started Wallarm, we focused on the APIs that power modern apps. We
Security
Indirect Prompt Injection Attacks Against LLM Assistants
Really good research on practical attacks against LLM agents. “Invitation Is All You Need! Promptware Attacks Against LLM-Powered Assistants in
Security
ImageMagick RCE Vulnerability: A Hacker’s Magic Wand
A high-severity security vulnerability, CVE-2025-57803, has been identified in ImageMagick, a widely used open-source image processing software. This flaw could allow
Security
Meet Cloud Cyber Hygiene Score as Your Single Measure for Risk
Security teams juggle many findings and dashboards across accounts. A single, consistent score helps decide what to fix first, then