Aggregator
CVE-2026-2734 | MLflow up to 3.9.x REST API BEFORE_REQUEST_VALIDATORS/AFTER_REQUEST_HANDLERS access control
CVE-2026-6279 | themefusion Avada Builder Plugin up to 3.15.2 on WordPress AJAX Endpoint get_value injection
Capture The Flag — ВСЁ. Нейросети превратили турниры по безопасности в состязание кошельков
Most dark web activity revolves around a handful of topics
Dark web activity often becomes visible during marketplace seizures, major data leaks, or sudden spikes in criminal activity. Those events can create an impression of an ecosystem where attention shifts quickly and new trends regularly replace old ones. A six-year dataset covering more than 25,000 dark web sites tracked what people discussed in underground forums and marketplaces and how those discussions changed over time. The work drew from more than 11 million archived snapshots collected … More →
The post Most dark web activity revolves around a handful of topics appeared first on Help Net Security.
22 миллиона сеансов на виду. Утечка в FTF Live раскрыла личные данные пользователей по всему миру
AI red teaming agents change how LLMs get tested
Adversarial probing of LLMs has piled up a sprawling toolkit over the past three years. Attack techniques with names like Tree of Attacks with Pruning, Crescendo, and Skeleton Key sit alongside hundreds of prompt transforms and scoring methods across open-source frameworks including Microsoft’s PyRIT, NVIDIA’s Garak, and Promptfoo. The catalog has grown faster than any operator can fluently navigate it, and that mismatch is changing how AI red teaming gets done. A wave of recent … More →
The post AI red teaming agents change how LLMs get tested appeared first on Help Net Security.