AI 资讯
Google Expands SynthID Adoption for AI Watermarking, Previews Content Detection API
Google's SynthID, designed to embed imperceptible signals into AI-generated content, is adding a new Content Detection API on Google Cloud's Gemini Enterprise Agent Platform, after gaining adoption by several industry players including Nvidia and OpenAI. By Sergio De Simone
产品设计
Friday Squid Blogging: Regulating Squid Fishing in the South Pacific
The South Pacific Regional Fisheries Management Organization (SPRFMO) needs to regulate squid fishing in the South Pacific. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.
AI 资讯
CISA Security Leak
Crazy story : Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and that it represents one of the most egregious government data leaks in recent history. News article .
AI 资讯
macOS Kernel Memory Corruption Exploit
A group used Anthropic’s Mythos AI model to help find a kernel memory corruption vulnerability and exploit on Apple’s M5. News article .
AI 资讯
Google won't rest until Gemini is everywhere in your home
The company is making it easier for manufacturers to make more Gemini-powered smart devices.
AI 资讯
On AI Security
Good report : Executive Summary: Let’s say you wanted to make sure that your AI is secure. Can you just maximize the security and privacy benchmark and call it a day? Nope, because benchmarks don’t actually work for measuring AI capabilities (even when they are NOT emergent systemic properties like security). So let’s take a step back: how do you measure security in the first place? Good question. Over the last 30 years, security engineering for software evolved from black box penetration testing, through whitebox code analysis and architectural risk analysis to de facto process-driven standards like the Building Security In Maturity Model (BSIMM). Software had a very deep impact on business operations, and it appears that AI is going to have an even deeper impact. Will a software security-like measurement move work for AI? Probably. In the meantime we can make real progress in AI security by cleaning up our WHAT piles and managing risk by identifying and applying good assurance processes. (Spoiler alert: no matter what we do, we still don’t get a security meter for AI, so we need to be extra vigilant about security.)...
AI 资讯
Laurie Anderson Is Quoting Me
Not by name, but Laurie Anderson quotes me in one of the tracks of her new album: My favorite quote is from a cryptologist who said “If you think technology will solve your problems, you don’t understand technology and you don’t understand your problems.” Also in interviews : “Of course, it’s ridiculous, outrageous, blah, blah, blah,” Anderson says about the ad. ‘But, I mean, my favorite quote on this is from a cryptologist who said, ‘If you think technology will solve your problems, you don’t understand technology and you don’t understand your problems.’ And I think I’m completely on board with that.”...
AI 资讯
CISA Admin Leaked AWS GovCloud Keys on Github
Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and that it represents one of the most egregious government data leaks in recent history.
AI 资讯
Zero-Day Exploit Against Windows BitLocker
It’s nasty , but it requires physical access to the computer: The exploit, named YellowKey, was published earlier this week by a researcher who goes by the alias Nightmare-Eclipse. It reliably bypasses default Windows 11 deployments of BitLocker, the full-volume encryption protection Microsoft provides to make disk contents off-limits to anyone without the decryption key, which is stored in a secured piece of hardware known as a trusted platform module (TPM). BitLocker is a mandatory protection for many organizations, including those that contract with governments...
产品设计
Friday Squid Blogging: Bigfin Squid
Article about the bigfin squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.
AI 资讯
Bypassing On-Camera Age-Verification Checks
Some AI-based video age-verification checks can be fooled with a fake mustache .
开发者
Googlebooks are the Android-based evolution of the Chromebook
Google's only giving us a tease of what it has planned for its new laptop lineup.
产品设计
Android Auto is getting a big makeover for 2026
Upgrades include a revamped UI, support for widgets, immersive 3D maps and more.
AI 资讯
The Google Fitbit Air is an AI-infused take on Whoop wearables
It's basically a small Fitbit Inspire without a strap.
开发者
Google is turning the Fitbit app into a unified portal for your health and fitness data
The new Health app is rolling out on May 19.
AI 资讯
Chrome downloads a 4GB AI file without user consent, researcher alleges
At least there's a toggle to easily turn this off.
AI 资讯
Anthropic reportedly agrees to pay Google $200 billion for chips and cloud access
This five-year deal is one of many circular agreements keeping the AI sector afloat.
AI 资讯
Google Home gains more Gemini-powered camera features
The company also updated Gemini for Home for those in an early access program.
开发者
Google will livestream The Android Show: I/O Edition on May 12
The virtual event will showcase some of the biggest changes to the OS in years.
科技前沿
Chrome on Android will now let you share your approximate location
The feature is also coming to desktops soon.