PCMag

OpenAI Rolls Out Lockdown Mode to Fight Prompt Injection Attacks

The new feature promises increased protection against these types of attacks, but you'll have to sacrifice a lot of functionality, including live web browsing and image retrieval from the web.
eWeek

WhatsApp Messages on Android Expose New Gemini AI Security Risk

SafeBreach researchers showed how hidden commands in Android notifications could trick Google Gemini through indirect prompt ...

Researchers demonstrate prompt injection attacks via WhatsApp and Slack notifications

The attack relies on hidden prompts in a foreign language.
Semiconductor Engineering

Breaking The “Unhackable” Xbox One

A hardware fault injection attack results in the first Xbox One boot ROM-level compromise after 12 years.
GitHub

AV bypass using the shellcode loader 'GoPurple'

GoPurple is a shellcode loader tool for evaluating detection capabilities of endpoint security solutions. I tested the tool GoPurple with a metasploit shellcode and several injection techniques on a ...
GitHub

AV bypass using my shellcode loader 'Invoke-PoSH-ShellCodeLoader1

'Invoke-PoSH-ShellCodeLoader' is a shellcode loader script generator that aims to bypass AV solutions such as Windows Defender. It generates an obfuscated and encrypted shellcode loader PowerShell ...