OpenAI unveils Lockdown Mode to protect sensitive data from prompt injection attacks

Even with Lockdown Mode, ChatGPT could be still vulnerable to prompt injections, but the goal is to reduce the likelihood ...
Opinion
HackadayOpinion

This Week In Security: Messing With AI, 7Zip And Notepad++ Vulnerabilities, HTTP2 Bomb, And More

With the rise of AI coding assistants continuing apparently unabated, some project maintainers have begun striking back. Ars Technica reports on projects putting hostile directions into the ...
eWeek

WhatsApp Messages on Android Expose New Gemini AI Security Risk

SafeBreach researchers showed how hidden commands in Android notifications could trick Google Gemini through indirect prompt ...

Researchers demonstrate prompt injection attacks via WhatsApp and Slack notifications

The attack relies on hidden prompts in a foreign language.
GitHub

AV bypass using the shellcode loader 'GoPurple'

GoPurple is a shellcode loader tool for evaluating detection capabilities of endpoint security solutions. I tested the tool GoPurple with a metasploit shellcode and several injection techniques on a ...
GitHub

AV bypass using my shellcode loader 'Invoke-PoSH-ShellCodeLoader1

'Invoke-PoSH-ShellCodeLoader' is a shellcode loader script generator that aims to bypass AV solutions such as Windows Defender. It generates an obfuscated and encrypted shellcode loader PowerShell ...