David Fiser

[ZDI-26-261] (0Day) Docker Desktop credentialHelper Directory Traversal Privilege Escalation Vulnerability (CVSS 7.5; Credit: Nitesh Surana (https://t.co/c5WrtDtugX) & Nelson William Gamazo Sanchez of Trend Research) https://t.co/G6V8knmTSd

Your AI Gateway Was a Backdoor: Inside the LiteLLM Supply Chain Compromise | Trend Micro (US) https://t.co/CB3dQg1gOZ

Beware of AI applications and their privacy policy claims. In new research, we reveal when security measures fail miserably, resulting in the exposure of sensitive user photos and proprietary AI models due to unsecured cloud storage. https://t.co/wLRh7HYx2Q

As part of our continuous research on how to strengthen Model Context Protocol (MCP) security we explore how proper MCP server hardening within containers can mitigate security risks and offer security benefits essential for protecting cloud workloads. https://t.co/BicSZU8sQQ

Don't forget that secret management best practices apply to MCP servers! https://t.co/yC0iPOX5Bi

Don't be a victim of fast and unsafe MCP server deployments. MCP Security: Network-Exposed Servers Are Backdoors to Your Private Data https://t.co/zi6c7raEnd

Trend Micro Leading the Fight to Secure AI | Trend Micro (US) https://t.co/krtzczsTLg

Organizations running AI-powered services with proprietary models could be at risk of intellectual property theft, particularly if their models or inference services are exposed through misconfigured APIs. Here’s what you need to know: https://t.co/96wRpcUM2Y

The exposure of OpenVPN and SSH keys within a container image can lead to full network compromise. Learn how to protect your keys and certificates today. Read more here:⬇️ https://t.co/LNaSqOzLbe

Cybercriminals can weaponize stolen certificates and private keys to infiltrate systems undetected. Learn how to safeguard your organization from these risks. Here’s what you need to know: ⬇️ https://t.co/LNaSqOzLbe

From Registries to Private Networks: Threat Scenarios Putting Organizations in Jeopardy https://t.co/kwo1TKtq51