The deprecated FCKeditor plugin is being abused to create open redirects on university, government, and corporate websites, allowing threat actors to poison search engine results with malicious content.
Boise State University master’s student Madilyn Bosselmann knew she was in the right field when an overwhelmed manufacturing company in Idaho needed her help completing a complicated U.S. Defense Department cybersecurity certification. The small company had become overburdened trying to comply with the program’s strict cyber rules, and momentum on the effort slowed before Bosselmann […]
Kansas State University is managing a cybersecurity incident that has disrupted various network systems, including VPN, email services, and video platforms, impacting the educational continuity for its 20,000 students and 1,400 academic personnel.
While most of its students enjoyed summer break, Colorado State University revealed vast and duplicative exposure to a data breach. CSU was one of thousands of organizations caught in the flurry of zero-day attacks targeting Progress Software’s MOVEit file-transfer service customers. It wasn’t the first victim to come forward, nor would it be the last. […]
A team of computer scientists led by the University of Massachusetts Amherst recently announced a new method for automatically generating whole proofs that can be used to prevent software bugs and verify that the underlying code is correct. This new method, called Baldur, leverages the artificial intelligence power of LLMs, and, when combined with the […]
The Memorial University of Newfoundland experienced a cyberattack in late December, leading to the postponement of classes and disruptions to IT services at its Grenfell campus.
Jan 01, 2024NewsroomEncryption / Network Security Security researchers from Ruhr University Bochum have discovered a vulnerability in the Secure Shell (SSH) cryptographic network protocol that could allow an attacker to downgrade the connection’s security by breaking the integrity of the secure channel. Called Terrapin (CVE-2023-48795, CVSS score: 5.9), the exploit has been described as the […]
The University of Wollongong has become the latest victim of a data breach, as confirmed by university officials. In a statement released over the weekend, the institution acknowledged the University of Wollongong data breach and assured the public that measures are being taken to contain the incident. Both staff and students are believed to be […]
AI security researchers from Robust Intelligence and Yale University have designed a machine learning technique that can speedily jailbreak large language models (LLMs) in an automated fashion. “The method, known as the Tree of Attacks with Pruning (TAP), can be used to induce sophisticated models like GPT-4 and Llama-2 to produce hundreds of toxic, harmful, […]
- 1
- 2