Microsoft just made one of the biggest AI announcements of the year at Build 2023. Plus, more announcements from Adobe Photoshop, Google Ads, Bard, and 15 new AI tools. Here's the rundown of everything going on in AI right now:

First to finish all challenges in BlackhatMEA !! See you all in Finals :P

2023 Recap: - 11th overall ( w/ 745.390 points ) on CTFtime - 🥇 1st in 8 CTFs - 🥈 2nd in 5 CTFs - 🥉 3rd in 6 CTFs - Top 5 in 31 CTFs - Top 10 in 43 CTFs - Hosted BSides Indore CTF and CrewCTF - Collaborated with TSJ CTF as _TTT_ - Qualified and participated in 5 onsite CTF’s

Join for some pastime fun!

Our security researcher hashkitten found one of the most critical exploit chains in the history of Assetnote. Affecting 40k+ instances of ServiceNow, we could execute arbitrary code, access all data without authentication. You can read our blog here: assetnote.io/resources/rese…

This is just all sorts of fucked up

Linus is 🌶️

Today 20 years ago, Pirate Bay response to legal threats from DreamWorks

Intel HW is too complex to be absolutely secure! After years of research we finally extracted Intel SGX Fuse Key0, AKA Root Provisioning Key. Together with FK1 or Root Sealing Key (also compromised), it represents Root of Trust for SGX. Here's the key from a genuine Intel CPU😀

I posted a blog about how browser permissions work. albertofdr.github.io/web-security-c…

this is my 13th reason im not joking

👀

Hosting a security-themed demo night with The AI Collective and Earlybird VC on the 23rd of July in London featuring Lakera AI Harry Wetherald AI Security Institute. Engineers from cohere Synthesia Windsurf InstaDeep Meta already have signed up 👀 lu.ma/m4v49lfw

“You still write structs in IDA manually instead of using symbol.exchange ?”

I found out that you can use "ftp::" to convert a limited Dom Clobering situation into a full CSPT. Then, while talking about it with m0z, he found that we can also use "https::" This can be used to prevent URL parsing of href, allowing us to hit other endpoints