The Hacker News

Chainlit AI Framework Flaws Enable Data Theft via File Read and SSRF Bugs

High-severity flaws in the Chainlit AI framework could allow attackers to steal files, leak API keys & perform SSRF attacks; ...

Chainalysis bets on automation to scale onchain investigations beyond developers

Chainalysis has launched Workflows, a no-code feature that lets non-technical users automate advanced onchain investigations ...

Worried about AI privacy? This new tool from Signal's founder adds end-to-end encryption to your chats

Moxie Marlinspike, the mind behind the secure messaging app Signal, has launched an alternative to AI chatbot ChatGPT that focuses on user privacy and security. Also: The best free AI courses and ...

Confer Keeps Coded Data Secret With User Key

In a way, the engineering behind Confer is profoundly simple: the private key is kept with the user, so after the data is ...
CSO Online

Flaws in Chainlit AI dev framework expose servers to compromise

Security researchers uncovered two vulnerabilities in the popular Python-based AI app building tool that could allow ...
SecurityWeek

‘SolyxImmortal’ Information Stealer Emerges

The Python-based information stealer SolyxImmortal uses legitimate APIs and libraries for stealthy data gathering and ...
The Hacker News

ThreatsDay Bulletin: AI Voice Cloning Exploit, Wi-Fi Kill Switch, PLC Vulns, and 14 More Stories

This week's stories show how fast attackers change their tricks, how small mistakes turn into big risks, and how the same old ...