University of California

Misleading text in the physical world can hijack AI-enabled robots

Researchers demonstrate that misleading text in the real-world environment can hijack the decision-making of embodied AI systems without hacking their software. Self-driving cars, autonomous robots ...
Berkman Klein Center

Why AI Keeps Falling for Prompt Injection Attacks

Bruce Schneier and Barath Raghavan explore why LLMs struggle with context and judgment and, consequently, are vulnerable to ...
Dark Reading

AI Agents Undermine Progress in Browser Security

Over three decades, the companies behind Web browsers have created a security stack to protect against abuses. Agentic browsers are undoing all that work.

Double check your calendar - these new prompt injection attacks are serious

A Google Gemini security flaw allowed hackers to steal private data ...
IEEE

Modeling, Analysis, Resilience Improvement of Autonomous AC Microgrids with Virtual Output Impedance Control under False Data Injection Attacks

Abstract: This paper focuses on the modeling, analysis, and mitigation of a new false data injection attack targeting the virtual output impedance control of droop-based distributed energy resources ...
IEEE

Fallback control based false injection attack detection and defense for managed potential-based routing

Abstract: The concept of managed self-organization is a promising approach for controlling large-scale and complex network systems. However, enhancing the security of such systems remains a ...
Ars Technica

ChatGPT falls to new data-pilfering attack as a vicious cycle in AI continues

There’s a well-worn pattern in the development of AI chatbots. Researchers discover a vulnerability and exploit it to do something bad. The platform introduces a guardrail that stops the attack from ...
Dark Reading

ChatGPT's Memory Feature Supercharges Prompt Injection

Some of the latest, best features of ChatGPT can be twisted to make indirect prompt injection (IPI) attacks more severe than they ever were before. That's according to researchers from Radware, who ...
Opinion

IBM's AI agent Bob easily duped to run malware, researchers show

That's apparently the case with Bob. IBM's documentation, the PromptArmor Threat Intelligence Team explained in a writeup provided to The Register, includes a warning that setting high-risk commands ...
Fox News

Fake error popups are spreading malware fast

A dangerous cybercrime tool has surfaced in underground forums, making it far easier for attackers to spread malware. Instead of relying on hidden downloads, this ...
Bleeping Computer

New D-Link flaw in legacy DSL routers actively exploited in attacks

Threat actors are exploiting a recently discovered command injection vulnerability that affects multiple D-Link DSL gateway routers that went out of support years ago. The vulnerability is now tracked ...
Fox News

OpenAI admits AI browsers face unsolvable prompt attacks

Cybercriminals don't always need malware or exploits to break into systems anymore. Sometimes, they just need the right words in the right place. OpenAI is now openly acknowledging that reality. The ...