bypasses

Blog
digitpatrox3 days ago
21

New Ubuntu Linux security bypasses require manual mitigations

Three security bypasses have been discovered in Ubuntu Linux’s unprivileged user namespace restrictions, which could be enable a local attacker to exploit vulnerabilities in kernel components. The issues allow local unprivileged users to create user namespaces with full administrative capabilities and impact Ubuntu versions 23.10, where unprivileged user namespaces restrictions are enabled, and 24.04 which has them active by default. Linux…
Read More »
Blog
digitpatrox3 days ago
17

Qualys discovers three bypasses of Ubuntu’s unprivileged user namespace restrictions

The Qualys Threat Research Unit (TRU) says it has uncovered three flaws in Ubuntu’s unprivileged user namespace restrictions that could allow a local attacker to gain full administrative capabilities. Linux distributions generally allow unprivileged users to create namespaces that help in creating containers and additional sandboxing functionality for programs such as container runtimes, but that also creates a weak spot.…
Read More »
Blog
digitpatroxJanuary 30, 2025
78

Time Bandit ChatGPT jailbreak bypasses safeguards on sensitive topics

A ChatGPT jailbreak flaw, dubbed “Time Bandit,” allows you to bypass OpenAI’s safety guidelines when asking for detailed instructions on sensitive topics, including the creation of weapons, information on nuclear topics, and malware creation. The vulnerability was discovered by cybersecurity and AI researcher David Kuszmar, who found that ChatGPT suffered from “temporal confusion,” making it possible to put the LLM…
Read More »
Blog
digitpatroxJanuary 5, 2025
205

Nuclei flaw bypasses template signature checks to execute commands

A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute on local systems. Nuclei is a popular open-source vulnerability scanner created by ProjectDiscovery that scans websites for vulnerabilities and other weaknesses. The project utilizes a template-based scanning system of over 10,000 YAML templates that scan websites…
Read More »
Blog
digitpatroxOctober 28, 2024
132

New tool bypasses Google Chrome’s new cookie encryption system

A researcher has released a tool to bypass Google’s new App-Bound encryption cookie-theft defenses and extract saved credentials from the Chrome web browser. The tool, named ‘Chrome-App-Bound-Encryption-Decryption,’ was released by cybersecurity researcher Alexander Hagenah after he noticed that others were already figuring out similar bypasses. Although the tool achieves what multiple infostealer operations have already added to their malware, its public…
Read More »

bypasses

New Ubuntu Linux security bypasses require manual mitigations

Qualys discovers three bypasses of Ubuntu’s unprivileged user namespace restrictions

Time Bandit ChatGPT jailbreak bypasses safeguards on sensitive topics

Nuclei flaw bypasses template signature checks to execute commands

New tool bypasses Google Chrome’s new cookie encryption system

Phishing platform ‘Lucid’ behind wave of iOS, Android SMS attacks

iOS 18.4 is out now with Apple Intelligence-powered priority notifications

ITPro launches Picks 2025 Awards

TikTok Influencers Are Wrong About Hackers Stealing Credit Card Information Over AirDrop

Proofpoint names Jerome Jullien as new EMEA channel chief

My Favorite Amazon Deal of the Day: The Samsung Galaxy Ring

Apple and SpaceX enter the Star Wars era – Computerworld

The Acer Chromebook Plus 514 Is at Its Lowest Price Right Now

Windows 11 redesigns the Blue Screen of Death and may switch to a black screen

Texas Board of Physical Therapy Examiners breached, SSNs and other info compromised

FBI disrupts the Dispossessor ransomware operation, seizes servers

TikTok Is Pushing Old and False News as ”Breaking” Alerts