Microsoft

Whisper Leak: A novel side-channel attack on remote language models

Understand the risks of encrypted AI traffic exposure and explore practical steps users and cloud providers can take to stay ...
CSO Online

Vibe-coded ransomware proof-of-concept ended up on Microsoft’s marketplace

A suspicious Visual Studio Code extension with file-encrypting and data-stealing behavior successfully bypassed marketplace ...
SecurityWeek

Data Exposure Vulnerability Found in Deep Learning Tool Keras

A vulnerability in the open source deep learning tool Keras could allow attackers to load arbitrary local files or conduct SSRF attacks.