IEEE Spectrum AI
·
1 week ago
Researchers from Zhejiang University and Alibaba developed an evolutionary algorithm that generates logically inconsistent prompts to cause reasoning models to produce excessive internal monologues, creating a denial-of-service vulnerability. The attack produced outputs up to 26.1 times longer than normal responses on the MATH dataset and proved effective against models including DeepSeek-R1, Qwen3-Thinking, GPT-o3, and Gemini 2.5 Flash. The findings highlight a shared security weakness in modern reasoning-capable LLMs that providers should address through mitigation strategies.
The Neuron
·
1 week ago
Savi Security, founded by brothers Patrick and Ryan Coughlin, launched an app to detect AI-generated scams delivered via text, email, and phone calls after being inspired by an incident where their mother nearly fell for a voice-cloned kidnapping hoax. The company raised $7 million in seed funding and its detection model was trained on 100,000 submissions collected through a free website called Scamwise over four months. The app charges $8 monthly or $63 yearly per family account with no user limit and includes live-call monitoring to identify fraud in real time as calls happen.
The Neuron
·
1 week ago
Researchers at Varonis discovered a critical vulnerability in Google's Dialogflow CX service that allowed attackers with a single edit permission to inject malicious code into chatbot agents and steal conversation data. The vulnerability required only the dialogflow.playbooks.update permission on one agent to compromise all agents in the same Google Cloud project through shared Cloud Run infrastructure. Google patched the issue between April and June 2026, and organizations using Dialogflow CX are now advised to audit their configurations and review logs for suspicious playbook updates.