The Hacker News

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Seven Windows authentication paths bypass MFA protections, enabling credential attacks through AD, NTLM, Kerberos, RDP, SMB, and service accounts.

Google PM open-sources Always On Memory Agent, ditching vector databases for LLM-driven persistent memory

Enterprise AI teams are moving beyond single-turn assistants and into systems expected to remember preferences, preserve ...
Microsoft

AI as tradecraft: How threat actors operationalize AI

Threat actors are operationalizing AI to scale and sustain malicious activity, accelerating tradecraft and increasing risk for defenders, as illustrated by recent activity from North Korean groups ...
The Hacker News

China-Linked Hackers Use TernDoor, PeerTime, BruteEntry in South American Telecom Attacks

China-linked UAT-9244 targets South American telecom networks with TernDoor, PeerTime, and BruteEntry malware on Windows, Linux, and edge devices.

Understanding the Foundation: How LLMs Process Your Input

First of four parts Before we can understand how attackers exploit large language models, we need to understand how these models work. This first article in our four-part series on prompt injections ...