All news with #ollama tag

Tue, October 14, 2025

Security Firms Clash Over CVE Credit and Disclosure

#Disclosure #CVE Program #Ollama #Gradio

🔍 A public dispute erupted when FuzzingLabs accused Y Combinator-backed Gecko Security of copying proof-of-concepts (PoCs), resubmitting them for CVEs, and backdating blog posts to claim credit. FuzzingLabs cites two specific flaws — an Ollama token-stealing bug and a Gradio arbitrary file-copy/DoS issue — and says unique markers in its PoCs prove plagiarism. Gecko denies wrongdoing, saying its process involves direct coordination with maintainers and that overlaps were accidental; it has since updated posts to credit FuzzingLabs.

Mon, October 6, 2025

AI in Today's Cybersecurity: Detection, Hunting, Response

#AI Security #Wazuh #SIEM #XDR #AWS #Anthropic #Ollama #Vector Database #Retrieval-Augmented Generation

🤖 Artificial intelligence is reshaping how organizations detect, investigate, and respond to cyber threats. The article explains how AI reduces alert noise, prioritizes vulnerabilities, and supports behavioral analysis, UEBA, and NLP-driven phishing detection. It highlights Wazuh's integrations with models such as Claude 3.5, Llama 3, and ChatGPT to provide conversational insights, automated hunting, and contextual remediation guidance.

Wed, August 27, 2025

AI-Generated Ransomware 'PromptLock' Uses OpenAI Model

#AI Code Gen Risk #Data Exfil via Tools #Ollama #OpenAI #Open-Weight Models #Prompt Injection #Ransomware #Weak Cryptography

🔒 ESET disclosed a new proof-of-concept ransomware called PromptLock that uses OpenAI's gpt-oss:20b model via the Ollama API to generate malicious Lua scripts in real time. Written in Golang, the strain produces cross-platform scripts that enumerate files, exfiltrate selected data, and encrypt targets using SPECK 128-bit. ESET warned that AI-generated scripts can vary per execution, complicating detection and IoC reuse.

Wed, August 27, 2025

ESET Finds PromptLock: First AI-Powered Ransomware

#AI Security #Data Exfil via Tools #Ollama #Open-Weight Models #Ransomware #Weak Cryptography

🔒 ESET researchers have identified PromptLock, described as the first known AI-powered ransomware implant, in an August 2025 report. The Golang sample (Windows and Linux variants) leverages a locally hosted gpt-oss:20b model via the Ollama API to dynamically generate malicious Lua scripts. Those cross-platform scripts perform enumeration, selective exfiltration and encryption using SPECK 128-bit, but ESET characterises the sample as a proof-of-concept rather than an active campaign.