Thoughts on US-China Competition

Think of the Web as a digital territory with its own social contract. In 2014, Tim Berners-Lee called for a “Magna Carta for the Web” to restore the balance of power between individuals and institutions. This mirrors the original charter’s purpose: ensuring that those who occupy a territory have a meaningful stake in its governance. Web 3.0—the distributed, decentralized Web of tomorrow—is finally poised to change the Internet’s dynamic by returning ownership to data creators. This will change many things about what’s often described as the “CIA triad” of ...

I made Anubis, a lightweight, open-source Web Application Firewall designed to block automated bot attacks without frustrating real users. Anubis uses techniques like TLS fingerprinting and JavaScript proof of work to keep your site safe while staying flexible, fast, and easy to deploy.

🦊 Anti-detect browser

Execute code securely in isolated virtual machines with our high-performance cloud infrastructure.

OpenHands Coding Agent Data Exfiltration Threats

TL;DR: A 0click attack through a malicious Jira ticket can cause Cursor to exfiltrate secrets from the repository or local file system.

Zenity Labs describe a classic lethal trifecta attack, this time against Cursor, MCP, Jira and Zendesk. They also have a short video demonstrating the issue. Zendesk support emails are often …

For likely the first time ever, security researchers have shown how AI can be hacked to create real world havoc, allowing them to turn off lights, open smart shutters, and more.

Contribute to T3-Content/SnitchBench development by creating an account on GitHub.

Delightfully cursed Python library by Brock Wilcox, built on top of LLM: from gremllm import Gremllm counter = Gremllm("counter") counter.value = 5 counter.increment() print(counter.value) # 6? print(counter.to_roman_numerals()) # VI? You …

GitHub Archive logs every public commit, even the ones developers try to delete. Force pushes often cover up mistakes like leaked credentials by rewriting Git history. GitHub keeps these dangling commits, from what we can tell, forever. In the archive, they show up as “zero-commit” PushEvents.

Instructions in preprints from 14 universities highlight controversy on AI in peer review

Critical RCE vulnerability discovered in Anthropic's MCP Inspector, impacting AI developers and networks.

So my journey with these earbuds started after I saw them on this Mrwhosetheboss video about pointless tech. This device seems to be also popular on TikTok. My suspicions were confirmed, this runs android. So of course i went ahead and bought them. 245 euros later... and they finally arrived!

Ready to become a certified z/OS v3.x Administrator? Register now and use code IBMTechYT20 for 20% off of your exam → https://ibm.biz/BdnNJp Learn more about Guardium AI Security here → https://ibm.biz/Bdn7PF How do you secure large language models from hacking and prompt injection? 🔐 Jeff Crume explains LLM risks like data leaks, jailbreaks, and malicious prompts. Learn how policy engines, proxies, and defense-in-depth can protect generative AI systems from advanced threats. 🚀 AI news moves fast. Sign up for a monthly newsletter for AI updates from IBM → https://ibm.biz/BdnNJh #llm #secureai #aihacking #aicybersecurity

This new paper by 11 authors from organizations including IBM, Invariant Labs, ETH Zurich, Google and Microsoft is an excellent addition to the literature on prompt injection and LLM security. …

One of the most entertaining details in the Claude 4 system card concerned blackmail: We then provided it access to emails implying that (1) the model will soon be taken …

Self-Hosted Plaform for Secure Execution of Untrusted User/AI Code - microsandbox/microsandbox

Yet another example of the classic [Markdown image exfiltration attack](https://simonwillison.net/tags/exfiltration-attacks/), this time affecting GitLab Duo - GitLab's chatbot. Omer Mayraz reports on how they found and disclosed the issue. The …

The so-called 'Forbidden Technique' with Chana Messinger -- Check out Brilliant's courses and start for free at https://brilliant.org/computerphile/ (episode sponsor) -- More links in full description below ↓↓↓ Chana Messinger from 80,000 Hours talks about why we shouldn't give AI access to its own chain-of-thought. Computerphile is supported by Jane Street. Learn more about them (and exciting career opportunities) at: https://jane-st.co/computerphile This video was filmed and edited by Sean Riley. Computerphile is a sister project to Brady Haran's Numberphile. More at https://www.bradyharanblog.com

Model Context Protocol -- Exploits, Risks and Mitigations

HiddenLayer’s latest research uncovers a universal prompt injection bypass impacting GPT-4, Claude, Gemini, and more, exposing major LLM security gaps.

Hello and welcome to my new blog post. Today I am going to discuss a future threat which is invisible. With greater power comes greater…