#Tag · Gnar 🔥 social

#ChatGPT falls to new data-pilfering attack as a vicious cycle in #AI continues

There’s a well-worn pattern in the development of AI #chatbots. Researchers discover a #vulnerability and #exploit it to do something bad. The platform introduces a guardrail that stops the attack from working. Then, researchers devise a simple tweak that once again imperils #chatbot users.
#privacy

https://arstechnica.com/security/2026/01/chatgpt-falls-to-new-data-pilfering-attack-as-a-vicious-cycle-in-ai-continues/

Ars Technica

ChatGPT falls to new data pilfering attack as a vicious cycle in AI continues

Will LLMs ever be able to stamp out the root cause of these attacks? Possibly not.

PrivacyDigest

@PrivacyDigest@mas.to · 3 days ago

#ChatGPT falls to new data-pilfering attack as a vicious cycle in #AI continues

https://arstechnica.com/security/2026/01/chatgpt-falls-to-new-data-pilfering-attack-as-a-vicious-cycle-in-ai-continues/

Ars Technica

ChatGPT falls to new data pilfering attack as a vicious cycle in AI continues

Will LLMs ever be able to stamp out the root cause of these attacks? Possibly not.

daniel:// stenberg:// boosted

Harry Sintonen

@harrysintonen@infosec.exchange · 5 days ago

#curl 8.18.0 has been released. This release fixes 1 medium and 5 low level vulnerabilities:
- CVE-2025-14017: broken TLS options for threaded LDAPS https://curl.se/docs/CVE-2025-14017.html
- CVE-2025-14524: bearer token leak on cross-protocol redirect https://curl.se/docs/CVE-2025-14524.html
- CVE-2025-14819: OpenSSL partial chain store policy bypass https://curl.se/docs/CVE-2025-14819.html
- CVE-2025-15079: libssh global knownhost override https://curl.se/docs/CVE-2025-15079.html
- CVE-2025-15224: libssh key passphrase bypass without agent set https://curl.se/docs/CVE-2025-15224.html