cybernews

Google reveals hackers used AI to exploit weakness in two-factor authentication

Google threat intelligence claims to have identified the first known case of cyber attackers using AI to help develop a zero-day exploit. Elsewhere, LLMs are being used to hide malware and create ...

Windows BitLocker zero-day gives access to protected drives, PoC released

A cybersecurity researcher has published proof-of-concept (PoC) exploits for two unpatched Microsoft Windows vulnerabilities ...
Bleeping Computer

New GhostLock tool abuses Windows API to block file access

A security researcher has released a proof-of-concept tool named GhostLock that demonstrates how a legitimate Windows file API can be abused in attacks to block access to files stored locally or on ...

Zero-day exploit completely defeats default Windows 11 BitLocker protections

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker ...

Two Unpatched Windows Exploits Target BitLocker, SYSTEM Access

Two unpatched Windows exploit PoCs target BitLocker protections and privilege controls after Microsoft’s May Patch Tuesday ...
TechSpot

A security researcher says Microsoft secretly built a backdoor into BitLocker, releases an exploit to prove it

The Epitome of WTF: A researcher known as "Nightmare-Eclipse" recently released YellowKey, a security vulnerability that allegedly enables a full bypass of BitLocker's full-volume encryption. The ...

YellowKey Tool Bypasses Windows 11 BitLocker Using Only a USB Stick

Nightmare-Eclipse, the researcher known for disclosing three recent Windows Defender exploits, reveals that BitLocker can be defeated with a USB stick.
Windows Report

YellowKey BitLocker Bypass And GreenPlasma Exploit Surface For Windows 11

New YellowKey and GreenPlasma exploits reportedly target BitLocker and privilege escalation on Windows 11 and Windows Server ...
The Hacker NewsOpinion

ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories

Weekly ThreatsDay Bulletin: supply chain attacks, fake support lures, AI tampering, data leaks, ransomware, and exploited ...
winbuzzer.com

OpenAI Details Codex Windows Sandbox Controls

OpenAI has published a technical explanation of its Windows sandbox for Codex, detailing a stricter local setup for the coding agent on developer PCs. Codex can still read broadly across a system, ...