Large Language Models (LLMs) may not be as smart as they seem, according to a study from Apple researchers. LLMs from OpenAI, Google, Meta, and others have been touted for their impressive reasoning skills. But research suggests their purported… Article Source https://mashable.com/article/apple-study-reveals-major-ai-flaw-openai-google-meta-llms
Broadcom has released updates addressing a high-severity vulnerability impacting VMware Fusion 13.x software hypervisor instances used for the concurrent operation of other operating systems in macOS, which could be leveraged for arbitrary code… Source link
Cybersecurity researchers have recently discovered a UEFI vulnerability in Phoenix SecureCore UEFI firmware that affects various Intel Core desktop and mobile processors. Dubbed “UEFIcanhazbufferoverflow,” the now-patched vulnerability, identified as CVE-2024-0762 with a CVSS score of 7.5, involves a buffer overflow caused by an unsafe variable in the Trusted Platform Module (TPM) configuration, potentially allowing the … Read more
The Rabbit R1, an AI wearable device, has faced criticism since its launch in May due to limited functionality and performance issues. Furthermore, a security flaw was recently discovered, with hardcoded API keys allowing access to all user responses. Despite Rabbit’s response in changing API keys, the vulnerability was active for almost two months, raising … Read more
Google recently released a security update for its Pixel smartphones to address 45 vulnerabilities in Android. While not as exciting as feature drops, this update is crucial due to one particularly dangerous flaw, CVE-2024-32896, a privilege escalation vulnerability. This flaw allows unauthorized access to system functions, potentially leading to harmful attacks. Google warns that this … Read more
Google recently issued a warning about a critical security flaw affecting Google Pixel Firmware, known as CVE-2024-32896. This vulnerability allows attackers to gain unauthorized access to devices by elevating their privileges, bypassing security protocols. The flaw is actively exploited in targeted attacks, prompting Google to release a security update for Pixel devices in June 2024, … Read more
Cybersecurity firm Eclypsium has uncovered significant security vulnerabilities in the Phoenix SecureCore UEFI firmware used by various Intel CPU and motherboard vendors across different generations. These vulnerabilities, dubbed “UEFIcanhazbufferoverflow,” are due to an insecure call to the UEFI service “GetVariable,” which could lead to a stack buffer overflow and allow malicious code execution. This kind … Read more
A critical bug has been discovered in the Unified Extensible Firmware Interface (UEFI) that could potentially impact hundreds of Intel-powered PC models. This bug, known as “UEFIcanhazbufferoverflow,” affects the Phoenix SecureCore UEFI Trusted Platform Module (TPM) and allows attackers to gain elevated privileges and execute arbitrary code within the UEFI firmware. This vulnerability could potentially … Read more
A significant firmware vulnerability has been discovered in Intel-powered PCs worldwide, posing a serious security risk. This flaw affects a range of devices and has the potential to be exploited by cyber attackers to compromise users’ data and privacy. The vulnerability stems from a flaw in the firmware of Intel processors and could allow attackers … Read more
A new vulnerability has been discovered in the UEFI firmware that poses a security threat to various Intel chip families, similar to past exploits like BlackLotus. Security workshop Eclypsium has disclosed the CVE-2024-0762 vulnerability to Phoenix Technologies, whose UEFI firmware is affected. This firmware is used in a wide range of Windows laptops, tablets, desktops, … Read more