eWeek

OpenAI Discovers Mass Shooter’s Secret ChatGPT Account

Canada presses OpenAI after a mass shooting suspect evaded a ChatGPT ban, raising urgent questions about AI safety and law enforcement reporting.
Communications of the ACM

Safe Coding

Safe coding is a collection of software design practices and patterns that allow for cost-effectively achieving a high degree ...

Why T-shaped knowledge is becoming more important than ever in the age of AI

AI tools are fundamentally changing software development. Investing in foundational knowledge and deep expertise secures your career long-term.
eWeek

OpenAI Introduces New Safeguards in ChatGPT to Prevent AI Prompt Injection

OpenAI launches Lockdown Mode and Elevated Risk warnings to protect ChatGPT against prompt-injection attacks and reduce data-exfiltration risks.

Why LLMs are plateauing – and what that means for software security

Despite rapid generation of functional code, LLMs are introducing critical, compounding security flaws, posing serious risks for developers.

Xue Li Contributes to Advanced Control Systems for Grid Stability in Renewable Energy Integration

A coordinated control framework stabilizes power grids with high renewable penetration by managing distributed storage units in real time.
The Hacker News

Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution

Fortinet has released security updates to address a critical flaw impacting FortiClientEMS that could lead to the execution of arbitrary code on susceptible systems. The vulnerability, tracked as ...
Infosecurity-magazine.com

SQL Injection Flaw Affects 40,000 WordPress Sites

More than 40,000 WordPress sites using the Quiz and Survey Master plugin have been affected by a SQL injection vulnerability that allowed authenticated users to interfere with database queries. The ...
IEEE

SQL Injection in LLM-Generated Queries: Systematic Analysis of Detection Gaps and Security Risks

Abstract: Large language models (LLMs) are being woven into software systems at a remarkable pace. When these systems include a back-end database, LLM integration opens new attack surfaces for SQL ...
IEEE

A Hybrid Deep Learning Model for SQL Injection Attack Detection

Abstract: An increasing number of web application services raises significant security concerns. Online access to these applications exposes them to multiple cyberattacks. The Open Web Application ...
Science Daily

Injection turns sleeping tumor immune cells into cancer fighters

KAIST researchers have developed a way to reprogram immune cells already inside tumors into cancer-killing machines. A drug injected directly into the tumor is absorbed by macrophages, prompting them ...
The Hacker News

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical security flaw has been disclosed in LangChain Core that could be exploited by an attacker to steal sensitive secrets and even influence large language model (LLM) responses through prompt ...