Learn about invisible prompt injection, which is a silent threat to secure AI.
Category: security
AMD has released mitigation and firmware updates to address a high-severity vulnerability that can be exploited to load malicious CPU microcode on unpatched devices.
The security flaw (CVE-2024–56161) is caused by an improper signature verification weakness in AMD’s CPU ROM microcode patch loader.
Attackers with local administrator privileges can exploit this weakness, resulting in the loss of confidentiality and integrity of a confidential guest running under AMD Secure Encrypted Virtualization-Secure Nested Paging (SEV-SNP).
Researchers have designed a single-photon time-of-flight LiDAR system that can acquire a high-resolution 3D image of an object or scene up to 1 kilometer away. The new system could help enhance security, monitoring, and remote sensing by enabling detailed imaging even in challenging environmental conditions or when objects are obscured by foliage or camouflage netting.
“Our system uses a single-photon detector approximately twice as efficient as detectors deployed in similar LiDAR systems reported by other research groups and has a system timing resolution at least 10 times better,” said research team member Aongus McCarthy, from Heriot-Watt University in the UK.
“These improvements allow the imaging system to collect more scattered photons from the target and achieve a much higher spatial resolution.”
The study of ‘starquakes’ (like earthquakes, but in stars) promises to give us important new insights into the properties of neutron stars (the collapsed remnants of massive stars), according to new research led by the University of Bath in the UK.
Such explorations have the potential to challenge our current approaches to studying nuclear matter, with important impacts for the future of both nuclear physics and astronomy. Longer term, there may also be implications in the fields of health, security and energy.
The value of studying asteroseismology—as these vibrations and flares are known—has emerged from research carried out by an international team of physicists that includes Dr. David Tsang and Dr. Duncan Neill from the Department of Physics at Bath, along with colleagues from Texas A&M and the University of Ohio.
Researchers have discovered a method to induce chirality in non-chiral materials using terahertz.
Terahertz radiation refers to the electromagnetic waves that occupy the frequency range between microwaves and infrared light, typically from about 0.1 to 10 terahertz (THz). This region of the electromagnetic spectrum is notable for its potential applications across a wide variety of fields, including imaging, telecommunications, and spectroscopy. Terahertz waves can penetrate non-conducting materials such as clothing, paper, and wood, making them particularly useful for security screening and non-destructive testing. In spectroscopy, they can be used to study the molecular composition of substances, as many molecules exhibit unique absorption signatures in the terahertz range.
Netgear has fixed two critical vulnerabilities affecting multiple WiFi router models and urged customers to update their devices to the latest firmware as soon as possible.
The security flaws impact multiple WiFi 6 access points (WAX206, WAX214v2, and WAX220) and Nighthawk Pro Gaming router models (XR1000, XR1000v2, XR500).
Although the American computer networking company did not disclose more details about the two bugs, it did reveal that unauthenticated threat actors can exploit them for remote code execution (tracked internally as PSV-2023–0039) and authentication bypass (PSV-2021–0117) in low-complexity attacks that don’t require user interaction.
An international team of engineers and physicists have found a way to use quantum light to improve the performance of cutting-edge spectroscopy.
Their new technique enables measurements of infrared electric fields which are twice as sensitive as previous developments in a process called time-domain spectroscopy.
The researchers say their work could help open up new applications in security and medical diagnostics.
For the first time, a team of researchers at Lawrence Livermore National Laboratory (LLNL) quantified and rigorously studied the effect of metal strength on accurately modeling coupled metal/high explosive (HE) experiments, shedding light on an elusive variable in an important model for national security and defense applications.
The team used a Bayesian approach to quantify metal strength uncertainty with tantalum and two common explosive materials and integrated it into a coupled metal/HE model. Their findings could lead to more accurate models for equation-of-state-studies, which assess the state of matter a material exists in under different conditions. Their paper —featured as an editor’s pick in the Journal of Applied Physics —also suggested that metal strength uncertainty may have an insignificant effect on result.
“There has been a long-standing field lore that HE model calibrations are sensitive to the metal strength,” said Matt Nelms, the paper’s first author and a group leader in LLNL’s Computational Engineering Division (CED). “By using a rigorous Bayesian approach, we found that this is not the case, at least when using tantalum.”
Google’s February 2025 update patches 47 Android flaws, including CVE-2024–53104, exploited in the wild, and CVE-2024–45569 in Qualcomm WLAN.
PyPI introduces a project archival feature to improve supply chain security, with archived projects remaining installable but unmaintained.