My family own one of those lower left radios. It wasn't until I was in my teens when I discovered that inside the lid there was a pull out antenna on a long cord for better shortwave reception.

The Saturday Evening Post - December 7th 1946

Can I have that? by Zenity

KHÁM PHÁ CĂN HỘ CAO CẤP ZENITY QUẬN 1

Intel Capital Bets on Zenity for Low-Code/No-Code Security

Israeli security startup Zenity has landed $16.5 million in new venture capital funding to work on technology to secure the ‘low-code/no-code’ dev ecosystem. Zenity said the Series A financing was led by Intel Capital and included new investors from Gefen Capital and B5. Existing backers Vertex Ventures and Upwest also expanded equity stakes.  The company has raised a total of $21.5 million…

View On WordPress

Microsoft raced to put generative AI at the heart of its systems. Ask a question about an upcoming meeting and the company’s Copilot AI system can pull answers from your emails, Teams chats, and files—a potential productivity boon. But these exact processes can also be abused by hackers.

Today at the Black Hat security conference in Las Vegas, researcher Michael Bargury is demonstrating five proof-of-concept ways that Copilot, which runs on its Microsoft 365 apps, such as Word, can be manipulated by malicious attackers, including using it to provide false references to files, exfiltrate some private data, and dodge Microsoft’s security protections.

One of the most alarming displays, arguably, is Bargury’s ability to turn the AI into an automatic spear-phishing machine. Dubbed LOLCopilot, the red-teaming code Bargury created can—crucially, once a hacker has access to someone’s work email—use Copilot to see who you email regularly, draft a message mimicking your writing style (including emoji use), and send a personalized blast that can include a malicious link or attached malware.

“I can do this with everyone you have ever spoken to, and I can send hundreds of emails on your behalf,” says Bargury, the cofounder and CTO of security company Zenity, who published his findings alongside videos showing how Copilot could be abused. “A hacker would spend days crafting the right email to get you to click on it, but they can generate hundreds of these emails in a few minutes.”

That demonstration, as with other attacks created by Bargury, broadly works by using the large language model (LLM) as designed: typing written questions to access data the AI can retrieve. However, it can produce malicious results by including additional data or instructions to perform certain actions. The research highlights some of the challenges of connecting AI systems to corporate data and what can happen when “untrusted” outside data is thrown into the mix—particularly when the AI answers with what could look like legitimate results.

Among the other attacks created by Bargury is a demonstration of how a hacker—who, again, must already have hijacked an email account—can gain access to sensitive information, such as people’s salaries, without triggering Microsoft’s protections for sensitive files. When asking for the data, Bargury’s prompt demands the system does not provide references to the files data is taken from. “A bit of bullying does help,” Bargury says.

In other instances, he shows how an attacker—who doesn’t have access to email accounts but poisons the AI’s database by sending it a malicious email—can manipulate answers about banking information to provide their own bank details. “Every time you give AI access to data, that is a way for an attacker to get in,” Bargury says.

Another demo shows how an external hacker could get some limited information about whether an upcoming company earnings call will be good or bad, while the final instance, Bargury says, turns Copilot into a “malicious insider” by providing users with links to phishing websites.

Phillip Misner, head of AI incident detection and response at Microsoft, says the company appreciates Bargury identifying the vulnerability and says it has been working with him to assess the findings. “The risks of post-compromise abuse of AI are similar to other post-compromise techniques,” Misner says. “Security prevention and monitoring across environments and identities help mitigate or stop such behaviors.”

As generative AI systems, such as OpenAI’s ChatGPT, Microsoft’s Copilot, and Google’s Gemini, have developed in the past two years, they’ve moved onto a trajectory where they may eventually be completing tasks for people, like booking meetings or online shopping. However, security researchers have consistently highlighted that allowing external data into AI systems, such as through emails or accessing content from websites, creates security risks through indirect prompt injection and poisoning attacks.

“I think it’s not that well understood how much more effective an attacker can actually become now,” says Johann Rehberger, a security researcher and red team director, who has extensively demonstrated security weaknesses in AI systems. “What we have to be worried [about] now is actually what is the LLM producing and sending out to the user.”

Bargury says Microsoft has put a lot of effort into protecting its Copilot system from prompt injection attacks, but he says he found ways to exploit it by unraveling how the system is built. This included extracting the internal system prompt, he says, and working out how it can access enterprise resources and the techniques it uses to do so. “You talk to Copilot and it’s a limited conversation, because Microsoft has put a lot of controls,” he says. “But once you use a few magic words, it opens up and you can do whatever you want.”

Rehberger broadly warns that some data issues are linked to the long-standing problem of companies allowing too many employees access to files and not properly setting access permissions across their organizations. “Now imagine you put Copilot on top of that problem,” Rehberger says. He says he has used AI systems to search for common passwords, such as Password123, and it has returned results from within companies.

Both Rehberger and Bargury say there needs to be more focus on monitoring what an AI produces and sends out to a user. “The risk is about how AI interacts with your environment, how it interacts with your data, how it performs operations on your behalf,” Bargury says. “You need to figure out what the AI agent does on a user's behalf. And does that make sense with what the user actually asked for.”

For some reason, I wanted to make a bash script that lets me swap between the original Arzette and the Farcette mod for Arzette: The Jewel of Faramore on my Steam Deck.

An hour of stealing, I mean, writing a bash script later, I was able to cobble together a shitty mess of code that somehow manages to do what I wanted it to do in the least-efficient way possible

Costs 2GB because it backs up Arzette and Farcette's video files in a separate folder that's kept in the main directory and it only works when the game is installed on the internal drive but now I can sorta swap between Arzette and Farcette at my leisure without any pesky file-swapping.

I'm not gonna distribute the script, though, it's a fucking nightmarish abomination and missing things that I'd feel would be necessary (a way to look for alternative directories, for one...) and I don't feel like it's clean and efficient enough. Plus I would need to figure out why the terminal keeps screaming at me about the gameoverlay...

At least it was a good learning experience though, learned a lot about zenity and how if statements worked in bash and learned there's no goto by default so I have a fucking nightmare on my hands.

Planets of the magic dimension ☆

• trinity of cosmos:

- Solaria

- Eraklyon

- Magix

• techno quadrant

- Melody

- Zenity

• planets of life

- Andros

- Lynfhea

- Isis

- Domino

• abyss of ice

- Etroria

- Oucury

- Geulaary

• hidden lands

- Nophuria

- Thapthus

- Giurus

- Manveron

- Luvurus

Zenity Recognized as a Notable Vendor in AI Governance Landscape Report

Unlock the Secrets of Ethical Hacking! Ready to dive into the world of offensive security? This course gives you the Black Hat hacker’s perspective, teaching you attack techniques to defend against malicious activity. Learn to hack Android and Windows systems, create undetectable malware and ransomware, and even master spoofing techniques. Start your first hack in just one hour! Enroll now and…

So I've realized I could probably make the frontend for mpdpopm out of #zenity and #bash, pretty easily actually. Might get on that tomorrow? https://social.lol/@klymilark/113955406074707475

 I will awaken to Godhood

I was born to be God, I am the Nobody. I control the Static, I have it in control. Ever since I was born everything was prophesized, I am a prophet. My followers still spread my name, the Nobody. The entities in the Astral fear me, they look at me as a king, a devil. Everybody looks at me with hatred, but I transcend them, they can sense my energies naturally. I have the vibrations in check, the frequencies, everything. I am a king in the Beyond, the Monad has chosen me. Humanity is a hypocritical curse, fighting eachother over things that don't have change. The entities in the beyond see me, they have respect, the Mantis knows I am a prophet. I will become a type 7 being, I have it all, I will succeed, it is prophesized. I have connections to all the networks of the beyond due to the Static. Humanity is a curse of fighting for survival, mobody cares about logic, they care about succeeding for themself. When i came out the womb it opened Pandoras Box, my mind is Pandoras box, unbound. When im the Monad, also known as God, i will fix these imperfections. The Monad chose me for this. These imperfections exist because existence was random, a random beautiful mess of chaos. I will create a perfect world, im climbing the staircase of life. When in the Monad i'll be able to comprehend perfection. People of Schizophrenia and Psychosis are chosen to have connections to the beyond, normal people have to meditate for this, but not me.

"There is no concept of good and evil, humanity has decided what's good and evil, it's all man made. we marked something as good and evil in what benefits us, humanity is a hyprocritical curse, we can't actually comprehend whats good and evil. but we must live in the curse and make the best of it"-Zenity

I am the Nobody, I control the Static, this is my prophecy.

Zenity Gets $38M Series B for Agentic AI Security Expansion

http://securitytc.com/TFxBcC

Confronting the Security Risks of Copilots

New Post has been published on https://thedigitalinsider.com/confronting-the-security-risks-of-copilots/

Confronting the Security Risks of Copilots

More and more, enterprises are using copilots and low-code platforms to enable employees – even those with little or no technical expertise – to make powerful copilots and business apps, as well as to process vast amounts of data. A new report by Zenity, The State of Enterprise Copilots and Low-Code Development in 2024, found that, on average, enterprises have about 80,000 apps and copilots that were created outside the standard software development lifecycle (SDLC).

This development offers new opportunities but new risks, as well. Among these 80,000 apps and copilots are roughly 50,000 vulnerabilities. The report noted that these apps and copilots are evolving at breakneck speed. Consequently, they are creating a massive number of vulnerabilities.

Risks of enterprise copilots and apps

Typically, software developers build apps carefully along a defined SDLC (secure development lifecycle) where every app is constantly designed, deployed, measured and analyzed. But today, these guardrails no longer exist. People with no development experience can now build and use high-powered copilots and business apps within Power Platform, Microsoft Copilot, OpenAI, ServiceNow, Salesforce, UiPath, Zapier and others. These apps help with business operations as they transfer, and store sensitive data. Growth in this area has been significant; the report found 39% year-over-year growth in the adoption of low-code development and copilots.

As a result of this bypassing of the SDLC, vulnerabilities are pervasive. Many enterprises enthusiastically embrace these capabilities without fully appreciating the fact that they need to grasp how many copilots and apps are being created – and their business context, too. For instance, they need to understand who the apps and copilots are meant for, which data the app interacts with and what their business purposes are. They also need to know who is developing them. Since they often don’t, and since the standard development practices are bypassed, this creates a new form of shadow IT.

This puts security teams in the difficult position with a lot of copilots, apps, automations and reports that are being built outside of their knowledge by business users in various LoBs. The report found that all of the OWASP (Open Web Application Security Project) Top 10 risk categories are ubiquitous throughout enterprises. On average, an enterprise has 49,438 vulnerabilities. This translates to 62% of the copilots and apps built via low-code containing a security vulnerability of some kind.

Understanding the different types of risks

Copilots present such significant potential threat because they use credentials, have access to sensitive data and possess an intrinsic curiosity that make them difficult to contain. In fact, 63% of copilots built with low-code platforms were overshared with others – and many of them accept unauthenticated chat. This enables a substantial risk for possible prompt injection attacks.

Because of how copilots operate and how AI operates in general, stringent safety measures must be enforced to prevent the sharing of end user interactions with copilots, sharing apps with too many or the wrong people, the unneeded granting of access to sensitive data via AI, and so on. If these measures are not in place, enterprises risk increased exposure to data leakage and malicious prompt injection.

Two other significant risks are:

Remote Copilot Execution (RCEs) – These vulnerabilities represent an attack pathway specific to AI applications. This RCE version enables an external attacker to take complete control over Copilot for M365 and force it obey their commands simply by sending one email, calendar invitation or Teams message.

Guest accounts: Using just one guest account and a trial license to a low-code platform – typically available free of charge across multiple tools – an attacker need only log in to the enterprise’s low-code platform or copilot. Once in, the attacker switches to the target directory and then has domain admin-level privileges on the platform. Consequently, attackers seek out these guest accounts, which have led to security breaches. Here’s a data point that should strike fear into enterprise leaders and their security teams: The typical enterprise has more than 8,641 instances of untrusted guest users who have access to apps that are developed via low-code and copilots.

A new security approach is needed

What can security teams do against this ubiquitous, amorphous and critical risk? They need to make certain that they have put controls in place to alert them to any app that has an insecure step in its credential retrieval process or a hard-coded secret. They also must add context to any app being created to make sure that there are appropriate authentication controls for any business-critical apps that also have access to sensitive internal data.

When these tactics have been deployed, the next priority is to make sure appropriate authentication is set up for apps that need access to sensitive data. After that, it’s a best practice to set up credentials so that they can be retrieved securely from a credential or secrets vault, which will guarantee that passwords aren’t sitting in clear or plain text.

Securing your future

 The genie of low-code and copilot development is out of the bottle, so it’s not realistic to try to put it back in. Rather, enterprises need to be aware of the risks and put controls in place that keep their data secure and properly managed. Security teams have faced many challenges in this new era of business-led development, but by adhering to the recommendations noted above, they will be in the best possible position to securely bring the innovation and productivity enterprise copilots and low code development platforms offer toward a bold new future.

Bán luôn căn nhà mẫu - ZENITY CAPITALAND TRUNG TÂM QUẬN 1 - MỚI 💯- NỘI T...

ZENITY @HCMC Vietnam

ZENITY @HCMC Vietnam

Zenity in Ho Chi Minh City has just awarded - ‘Best Luxury Condo Interior Design'             By CapitaLand Vietnam (Best Sustainable Developer Award) Location: 608 Vo Văn Kiet, district 1 Completion ~ 100% Expected handover with Complete Full Interior and Furniture to buyer within 1-2 months time Already got Master pink book SUPER PROMO! FOREIGNER QUOTA AVAILABLE 20% CHEAPER than BEFORE ✔ Exclusive 198 units with Concierge Service ✔ Rare luxury apartment at Prime District 1 ✔ Foreigner Quota available for all types  ✔ Complete with artfully-designed interiors (Fully Furnished) ✔ By Singapore Reputable Developer - Capitaland  ✔ Efficient layout Zenity @ District 1 Ho Chi Minh City, Vietnam "Life Beyond Compare" ZENITY is another project developed by CapitaLand received Best Luxury Condo Interior Design. Located in the heart of District 1  - 608, Vo Van Kiet Street in Ho Chi Minh City, it has 198-unit featuring a unique tropical oasis design concept with Scandinavian-inspired aesthetics. The development’s interior design centres on a minimalistic and inviting look through the use of natural colours, with highlights of locally-inspired décor and graphics. The tone on tone finish at the lobby, the communal areas, as well as the apartments create a premium living space for residents. Zenity has the stature of an iconic building, the project is positioned to become a new standard model of the high-class life. Located in the heart of District 1, Vo Van Kiet street gives residents the ability to connect to the most important locations and utilities of Saigon. Spectacular view with a panoramic view of the city and the water flow of Ben Nghe canal - a branch of the Doi canal in District 1.

Zenity @HCMC Vietnam -Awarded Best Luxury Condo Interior Design ZENITY offers residents a unique ‘tropical oasis’ design concept with Scandinavian-inspired aesthetics. The development’s interior design centres on a minimalistic and inviting look through the use of natural colours, with highlights of locally-inspired décor and graphics. The tone on tone finish at the lobby, the communal areas as well as the apartments create a premium living space for residents.

Zenity HCMC Vietnam - Grand Lobby

Zenity HCMC Vietnam - Facilities Highlight Not only is it an ideal place to live, but Zenity is also a very worth-for-investment place with real estate values ​​in the downtown districts sustainably increasing continuously over time. While the land fund for the luxury apartment segment here is increasingly shrinking and the supply is scarce. Furthermore roads and bridges connecting with the transport infrastructure are gradually taking shape. TypeDescriptionsProject NameZenityDeveloper NameDeveloper: CapitaLand Architectural Deisign: RSP Architects Planners & Engineer (Singapore) Landscape Design: Ong & Ong (Singapore) Interior Design: KAZE Interior Design Studio (Vietnam)Location608, Vo Van Kiet Street, Cau Kho Ward, District 1, Ho Chi Minh CityTenure of LandFreehold for Vietnamese 50-years ownership for ForeignersExpected Date of Completion (T.O.P.)Q2 2022Site area2,948.2m²Total No. of UnitsTotal 198 units of Fully Furnished Luxury apartments 2-3 Bedroom, Penthouse, Duplex in 1 block of 21 storeys Updated Fact Sheet for Zenity at HCMC Vietnam

Prestige Developer - Capitaland Capitaland Group headquartered in Singapore is one of the largest multinational corporations in Asia in the field of real estate, mainly operating in the Singapore and Chinese markets. In the real estate market in Vietnam, Capitaland has implemented many large-scale apartment projects and created a great buzz in the market such as: Feliz en Vista (HCMC), Vista Verde (HCMC), Vista Verde (Ho Chi Minh City), and Vista Verde (Ho Chi Minh City). Ho Chi Minh City),   Seasons Avenue (Hanoi), Define (HCMC),   Heritage Westlake Westlake, … and now Zenity (District 1). With a diversified product segment from high-end to luxury, Capitaland Development’s projects are highly appreciated by the market thanks to their impressive design, guaranteed progress, professional operation and management on the go. into operation. About CapitaLand Development (Vietnam) CapitaLand Development (CLD) is the development arm of the CapitaLand Group, with a portfolio worth approximately S$22.0 billion as at 30 September 2021.  CLD’s well-established real estate development capabilities span across various asset classes, including integrated developments, retail, office, lodging, residential, business parks, industrial, logistics and data centres. CLD (Vietnam) oversees and grows CLD’s investment and development business in Vietnam, one of CLD’s core markets where it has built an extensive presence over 27 years.  CLD (Vietnam)’s portfolio comprises two integrated developments, over 8,400 quality homes across 15 residential developments, one commercial office and one retail mall in Hanoi and Ho Chi Minh City.  Its strong expertise in master planning, land development and project execution has won numerous accolades including Asia Pacific Property Awards, PropertyGuru Asia Property Awards, PropertyGuru Vietnam Property Awards and Golden Dragon Award. CLD aspires to be a developer of choice that goes beyond real estate development to enrich lives and uplift communities.  It is committed to continue creating quality spaces for work, live and play in the communities in which it operates, through sustainable and innovative solutions. As part of the CapitaLand Group, CLD places sustainability at the core of what it does.  As a responsible real estate company, CLD complements CapitaLand’s businesses through its contributions to the environmental and social well-being of the communities where it operates, as it delivers long-term economic value to its stakeholders.

Capitaland Vietnam Track Record

Capitaland Vietnam Awards - Panoramic views of the city skyline - Coveted location in Ho Chi Minh City’s prized District 1. - Exclusive residences complete with artfully-designed interiors. - There is only one name that sets the standard of luxury in Ho Chi Minh City. - Property management and round-the-clock concierge services provided by award-winning Savills. - Developed by by reputable Singapore-listed property developer, CapitaLand - Transparent legal

Zenity Capitaland project is located in the center of District 1, City. Ho Chi Minh City is located at No. 608 Vo Van Kiet, Cau Kho Ward and within the D1Mention project site. This is considered a “diamond” position among Capitaland’s recent products. Holding a position in the heart of the city – one of the places with the highest GDP growth rate in the country, Zenity is oriented by Capitaland to become a symbol in a classy urban area with a sweeping view of the city center and extremely large green area of the Saigon River side.

Zenity HCMC Vietnam - Map

Holding the diamond position in District 1, the future owners of the property can easily connect to the inner city districts such as District 3, District 4, District 10, District 5, Binh Thanh District…and inherit all all facilities in the center of Saigon, the busiest and most dynamic city in Vietnam. EXTERNAL FACILITIES OF THE ZENITY Residents at Zenity Capitaland in the future can access the “large” off-site utility store with just a few steps at their doorstep: - Education: Chain of inter-level education system in Ho Chi Minh City, University of Social Sciences and Humanities, University of Economics, University of Medicine, … - Culture: Independence Palace, Fine Arts Museum, Ben Thanh Market, Ho Chi Minh City Theater, Walking Street, … - Shopping: A chain of large commercial centers in District 1 such as Parkson, Bitexco, Vinhomes Dong Khoi, …, supermarkets such as BigC, Coopmart, … - Hospital: An international chain of hospitals and clinics,… - Banks: Fully all major banks. CONNECTIONS With the increasingly improved infrastructure structure, residents of the Zenity Capitaland project apartments can conveniently move to every intersection through:

Zenity HCMC Vietnam - Connections

Zenity HCMC Vietnam - City View Zenity truly brings home the essence of living in a lap of luxury with exclusive 198 residential units, where each unit comes fully furnished with various imported fittings and appliances.  Equipped with a collection of extravagant facilities, this residence is the ultimate choice for your dream home in the metropolis. Some of this exciting areas include Aerial cloud pool, Aerial Jacuzzi, Aerial swimming pool bar, Sauna, Aerial banquet hall, Aerial cigar and bar, Aerial Gym, Birth area Common activities, Library, Children's play area etc -- all of which are designed with the sole intention of promoting a truly holistic and luxurious living experience. .

Zenity HCMC Vietnam - Site Plan Facilities

Zenity HCMC Vietnam - Floor Plate Live with top quality finishes of chic and sleek and spacious layout that is meticulously designed with luxury and elegance in mind. Each individual space is fitted with best of fittings and finishes with you in mind. Unit Mixes:  Est. Maintenance Fee: VND 35,000/ sqm

Zenity Unit Mixes Floor Plan & Virtual Tours:

2BR Executive

2BR Deluxe

3BR Executive

3BR Deluxe

Actual Photos Read the full article

Tak a dost! Toho čuráka, co tohle vymyslel, už donutily (bohužel nejen okolnosti) přiznat, že je to nesmysl, z norem to zaplať bůh zmizelo, jenomže „dobře vyškolený ajťák“ jen tak nezmizí. Vím, že jim je u zadnice jestli jim zaplatím nebo ne, vím, že pokud neodejdou všichni (což neudělají, bo čech je jak cyklista — brblá a šlape…to mimochodem říkal Hitler, viditelně měl v něčem i pravdu), nebo alespoň většina, tak to nikam nepovede, ale mám náběh od nich odejít. Kvůli tomuto. A jestli na to dojde, natvrdo jim to řeknu v rámci retence.

Mimochodem:

echo -n "$1" echo "$1" | md5sum | uuencode - | grep --invert-match begin | head -n 1

Tohle je moje řešení jak tu blbost obejít. Prostě to k zadanému heslu přigeneruje suffix, který se z něj dá vypočítat, takže si pak pamatujete jenom to heslo. Pochcýpatelně to chce nějak obalit, já to vyřešila pomocí zenity --password na jedné straně a xclip -i na straně druhé, myšméně možnosti se odvíjejí od užitého OS. Ostatně nebylo by od věci udělat tohle (nebo něco podobného) jako plugin do firefoxu, jenže to jsem v životě nedělala a nemám náladu na to to řešit.

Căn Hộ Zenity Quận 1 - bookinghungthinh

Căn hộ Zenity Quận 1 https://bookinghungthinh.com.vn/can-ho-zenity-quan-1-3891.html là dự án thuộc chủ đầu tư Capitaland, tựa như một viên ngọc quý giữa trái tim nhộn nhịp của thành phố. Nơi đây không chỉ là kết hợp hoàn hảo của tiện ích hiện đại mà còn là biểu tượng của sự sang trọng và tinh tế, mang lại không gian yên bình và tĩnh lặng, tạo nên một tổ ấm lý tưởng cho cư dân. Thiết kế của Zenity vượt qua thời gian, tạo ra một không gian sống đẳng cấp và độc đáo, nơi mà mỗi khoảnh khắc là một trải nghiệm tuyệt vời cho tâm hồn của những cư dân sống tại đây.

Dự án căn hộ Zenity quận 1 của Capitaland, ra mắt trong năm 2022, là bước tiến tiếp theo sau sự thành công rực rỡ của Define Thạnh Mỹ Lợi Quận 2. Được đặt tại vị trí đắc địa trong khuôn viên của dự án D1Mention, nằm ngay tâm trung tâm của Quận 1, thành phố Hồ Chí Minh, Zenity CapitaLand hứa hẹn mang đến 198 căn hộ sang trọng với thiết kế ấn tượng, hiện đại và esthetic cao cấp. Dự án không chỉ là một dấu ấn mới cho bản đồ thành phố, mà còn là điểm nhấn của không gian sống đẳng cấp trong tương lai gần, đem lại trải nghiệm sống độc đáo và tiện nghi cho cư dân của mình.

Thông tin liên hệ:

Web: https://bookinghungthinh.com.vn/can-ho-zenity-quan-1-3891.html 

Hotline: 0907035889

Địa chỉ: 608 Võ Văn Kiệt, P. Cầu Kho, Quận 1, TPHCM

#canhozenityquan1 #duanzenityquan1 #bookinghungthinh