A recent paper describes an experimental attack against large language model (LLM) agents that underscores the importance of assessing risk when employing AI. The authors explain how they employed a memory injection attack to “produce harmful outputs when the past records retrieved for demonstration are malicious”.

I began thinking about the many malicious actors who might take advantage of this or other memory-poisoning attacks. I'm sure I've only identified a partial list.

https://interisle.substack.com/p/memory-injection-attacks-against

https://www.alojapan.com/1227639/rubrik-appoints-new-field-cto-for-asia-pacific-japan/ Rubrik appoints new field CTO for Asia Pacific & Japan #ArtificialIntelligence(AI) #AsiaPacific #BusinessContinuity #CloudSecurity #Cohesity #CyberResilience #CyberThreats #DataProtection #DataSecurity #EnterpriseSecurity #Japan #JapanNews #news #Rubrik Rubrik has announced the appointment of Sathish Murthy as Field Chief Technology Officer for the Asia Pacific and Japan regions. Sathish Murthy brings over 25 years of experience in data…

Oracle customers confirm threat actor's data samples as authentic after Oracle denied a breach of its Cloud servers. #OracleBreach #Cybersecurity #DataBreach #CloudSecurity #Infosec #Oracle #Hacking #ThreatActor #CyberThreats #SecurityNews #TechNews

ODNI 2025 Threat Assessment notes threats from Russia, China, Iran, North Korea targeting critical infrastructure, telecom https://www.byteseu.com/865203/ #2025AnnualThreatAssessmentReport #ASATMissiles #Conflicts #CriticalInfrastructure #CyberEspionage #CyberThreats #CyberAttacks #Finance #Iran #JammingSystems #LEO #malware #Security #ThreatAssessment #trade

Chinese hacking is becoming bigger, better and stealthier

https://www.economist.com/china/2025/03/25/chinese-hacking-is-becoming-bigger-better-and-stealthier

https://www.hhs.gov/sites/default/files/vidar-malware-analyst-note-tlpclear.pdf

#CyberSecurity #MalwareAlert
#VidarStealer #DataProtection #OnlineSafety #CyberThreats #DigitalSecurity #InfoStealer #CyberAwareness #MalwareAnalysis #CyberDefense #HackingTools #CyberCrime #DataBreach #CyberResilience #ThreatIntelligence #CyberProtection #OnlinePrivacy #MalwareDetection #CyberForensics #CyberSec

Africa: More Than 300 Arrests As African Countries Clamp Down on Cyber Threats: [Interpol] LYON -- Authorities in seven African countries have arrested 306 suspects and seized 1,842 devices in an international operation targeting cyber attacks and cyber-enabled scams. http://newsfeed.facilit8.network/TJkmRG #Africa #CyberSecurity #CyberThreats #Interpol #OnlineSafety

New VanHelsing Ransomware Expands Across Platforms, Targeting Enterprises with Lucrative Payouts

#Cybersecurity #VanHelsingRansomware #Ransomware #ThreatIntel #CyberThreats #Malware #EnterpriseSecurity #Cybercrime #CyberDefense #Infosec

https://winbuzzer.com/2025/03/25/new-vanhelsing-ransomware-expands-across-platforms-targeting-enterprises-with-lucrative-payouts-xcxwbn/

New linux kernel Rust module unveiled to detect rootkits

https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/

Hybrid Threats and AI: Shaping the Future of EU’s Organized Threat Landscape in 2025 https://thecyberexpress.com/eu-socta-2025/ #ArtificialIntelligence #TheCyberExpressNews #TheCyberExpress #LawEnforcement #FirewallDaily #hybridthreats #CyberThreats #EU-SOCTA2025 #CyberNews

GitHub has removed a poisoned Action used in 23,000+ repos after it exfiltrated CI secrets, prompting concerns over supply chain security

#Cybersecurity #Microsoft #GitHub #CI_CD #DevSecOps #CyberThreats #GitHubActions #Malware #CodeSecurity #tjactions

https://winbuzzer.com/2025/03/21/github-action-breach-exposes-secrets-in-hundreds-of-repositories-xcxwbn/

A new phishing campaign tricks Mac users with fake security alerts, stealing Apple ID credentials

#Cybersecurity #macOS #Apple #Phishing #AppleSecurity #OnlineThreats #InfoSec #CyberThreats #SecurityAlert #MalwareAlert

https://winbuzzer.com/2025/03/20/sophisticated-phishing-campaign-targets-mac-users-xcxwbn/

HellCat Hackers Launch Global Assault on Jira: A Wake-Up Call for Cybersecurity

The notorious HellCat hacking group has intensified its attacks, compromising Jira servers worldwide and stealing sensitive data from major companies. This alarming trend highlights the vulnerabilitie...

https://news.lavx.hu/article/hellcat-hackers-launch-global-assault-on-jira-a-wake-up-call-for-cybersecurity

DollyWay Malware Campaign Breaches 20,000 WordPress Sites: A Deep Dive into Cybersecurity Threats

The DollyWay malware campaign has compromised over 20,000 WordPress sites, evolving into a sophisticated redirection system that poses significant risks to both users and site administrators. As cyber...

https://news.lavx.hu/article/dollyway-malware-campaign-breaches-20000-wordpress-sites-a-deep-dive-into-cybersecurity-threats

Belgium’s CCB reports significant registration surge under NIS2, as 2,410 organizations from critical sectors enrolled https://www.byteseu.com/842687/ #Belgium #CCB #CriticalInfrastructure #CyberIncidents #CyberThreats #cybersecurity #ENISA #NIS2 #NIS2Organizations

Hundreds of malicious google play-hosted apps bypassed android 13 security with ease

https://www.bitdefender.com/en-us/blog/labs/malicious-google-play-apps-bypassed-android-security

New On Location Coverage with Sean & Marco on ITSPmagazine

Cybersecurity in #Italy : A Niche Topic No More...

Not too long ago, if you mentioned #cybersecurity in Italy, you’d get a lot of blank stares. Today, it’s everywhere—boardrooms, government agencies, and, of course, #ITASEC, Italy’s official cybersecurity conference.

This year, #ITASEC2025 took over Bologna, bringing together researchers, policymakers, and industry leaders to discuss what’s next for digital security. AI security, regulatory shifts, #cybereducation — yes, even the Digital Operational Resilience Act (#DORA) that’s reshaping financial sector security—were all on the table.

Unfortunately I wasn’t in Italy at the time of the event, but that didn’t stop me from having a fascinating conversation with Professor Alessandro Armando, one of the key organizers and a leading voice in cybersecurity research. In this latest On Location episode. Of course, Sean Martin joined me and we spoke about:

How cybersecurity went from an afterthought to a national priority in Italy

Why companies are (finally) realizing that #security is an #investment, not just a cost

The rise of Cyber Challenge IT—Italy’s initiative to build the next generation of cybersecurity experts

And, of course, the big reveal… ITASEC 2026 is heading to Sardinia!

Watch the Full Video: https://youtu.be/NsdkYAYZANc

Listen to the Full Podcast: https://eventcoveragepodcast.com/episodes/cybersecurity-in-italy-itasec-2025-recap-future-outlook-with-professor-alessandro-armando-on-location-coverage-with-sean-martin-and-marco-ciappelli

Subscribe to On Location Podcast: https://eventcoveragepodcast.com

Cybersecurity isn’t just about stopping threats—it’s about shaping the future of how we live, work, and trust #technology.

What’s your take? Are we heading in the right direction, or are we still playing catch-up?

#InfoSec, #CyberRisk, #AIsecurity, #CyberThreats, #CyberEducation, #CyberWorkforce, #ThreatIntel, #EthicalHacking, #PenTesting, #RiskManagement, #CyberResilience, #DataProtection, #DigitalSecurity, #CyberLaw, #TechnologyNews, #OnLocationPodcast

Dive into DomainTools Investigations’ latest analysis: "The Domain Registrars Powering Russian Disinformation: A Deep Dive into Tactics and Trends."

Russian state-sponsored actors are leveraging low-cost, privacy-protected, and anonymous domain services to launch sophisticated disinformation campaigns.

Key Highlights:
Fake news portals mimicking legitimate media
Typosquatting and homoglyph attacks
Bulletproof hosting and Fast Flux networks
Preferred registrars
Emerging trends in domain registration tactics

Stay informed and help us combat these threats - read the full article and join the discussion: https://dti.domaintools.com/domain-registrars-powering-russian-disinformation/?utm_source=Mastodon&utm_medium=Social&utm_campaign=disinformation

AI-Powered Phishing: The New Threat to Gmail Security

As Gmail users face increasing threats from sophisticated hacking attempts, Google warns of a critical seven-day window for account recovery. With AI now playing a pivotal role in phishing attacks, un...

https://news.lavx.hu/article/ai-powered-phishing-the-new-threat-to-gmail-security

Strengthen Cybersecurity with AI! The JCDC playbook enhances threat-sharing & collaboration. Implement best practices, build trust, and contribute to future updates.

#AI #CyberSecurity #JCDC #CyberThreats | Read more - https://zurl.co/N9F3T