WindowsTechs.com – Page 10 – Collaborate Disseminate

Interesting Paper Exploring Prompt Injection

Posted on June 25, 2026 by Bruce Schneier

This is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in different role/instruction blocks, and not just the tags.

Their conclusion:

Role tags were a formatting trick that became the security architecture and the cognitive scaffolding of modern LLMs. We’ve shown that this architecture doesn’t survive into the model’s actual representations, and that such role confusion is linked to prompt injection.

Unless LLMs achieve genuine role perception, we think injection defense will remain a perpetual whack-a-mole game. And the continuous nature of role boundaries opens the threat of injections designed to subtly shift LLM states through seemingly innocuous text, legally and at scale…

Continue reading Interesting Paper Exploring Prompt Injection→

Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning

Posted on June 25, 2026 by Eduard Kovacs

The exploited flaw, CVE-2025-67038, is one of the vulnerabilities disclosed in April as part of the BRIDGE:BREAK research project.
The post Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning appeared first on SecurityWeek.
Continue reading Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning→

Surviving the Mythos Era: Richard Bejtlich on the Case for NDR

Posted on June 25, 2026 by The Hacker News

Despite the abundance of telemetry at analysts’ disposal, many security operations teams struggle to answer a few basic questions during incident investigation: What happened? What evidence do we have? How do we know we’re seeing it all, in context?

A… Continue reading Surviving the Mythos Era: Richard Bejtlich on the Case for NDR→

GitLab Patches Code Execution, Information Disclosure Vulnerabilities

Posted on June 25, 2026 by Ionut Arghire

The latest GitLab CE/EE updates address 13 vulnerabilities, including three high-severity defects.
The post GitLab Patches Code Execution, Information Disclosure Vulnerabilities appeared first on SecurityWeek.
Continue reading GitLab Patches Code Execution, Information Disclosure Vulnerabilities→

New Record Resurrects Long-Dead CD Graphics Format

Posted on June 25, 2026 by Zoe Skyforest

Audio CDs were the ubiquitous audio format of the 1990s. Lesser known were the extensions to the format that packaged all kinds of interesting additional data into a musical release. …read more Continue reading New Record Resurrects Long-Dead CD Graphics Format→

New Study Shows That Tall Vehicle Hoods Cause Hundreds More Deaths Per Year

Posted on June 25, 2026 by BeauHD

joshuark shares a report from Car and Driver: A new study conducted by the New York Times shows that the increase in vehicle hood height seen over the last two and a half decades, mainly due to the rise in popularity of large SUVs and trucks, has resul… Continue reading New Study Shows That Tall Vehicle Hoods Cause Hundreds More Deaths Per Year→

Hacker gets 18 months for attack that compromised 60,000 betting accounts

Posted on June 25, 2026 by Sinisa Markovic

A 21-year-old man known online as “Snoopy” was sentenced to 18 months in prison for his role in a scheme that hacked user accounts on a fantasy sports and betting website and sold access to them, causing hundreds of thousands of dollars in … Continue reading Hacker gets 18 months for attack that compromised 60,000 betting accounts→

IBM says it can fit nearly 100 billion transistors on a chip – why the milestone matters

Posted on June 25, 2026 by Latest news

The race for the first sub-one-nanometer chip is over, and IBM has won. Continue reading IBM says it can fit nearly 100 billion transistors on a chip – why the milestone matters→

SpyCloud automates threat investigations with new Research Agent

Posted on June 25, 2026 by Industry News

SpyCloud has announced the launch of SpyCloud Research Agent, a conversational AI investigation agent now available in its Cybercrime Investigations console. Cybercrime investigations have a tax: hours of manual pivot work that experienced analysts run… Continue reading SpyCloud automates threat investigations with new Research Agent→

Flare unveils new CTI capabilities and Okta support

Posted on June 25, 2026 by Industry News

Flare has announced the expanded capabilities for Flare CTI, and an Okta integration within its Identity Exposure Management (IEM) offering. These updates extend Flare’s identity expertise into tactical threat intelligence use cases and agentic w… Continue reading Flare unveils new CTI capabilities and Okta support→