Hacker News: kerng

New comment by kerng in "CamoLeak: Critical GitHub Copilot Vulnerability Leaks Private Source Code"

kerng — Sun, 12 Oct 2025 16:47:33 +0000

Not the first time by the way. GitHub Copilot Chat: From Prompt Injection to Data Exfiltration https://embracethered.com/blog/posts/2024/github-copilot-cha...

GitHub Copilot: Remote Code Execution via Prompt Injection (CVE-2025-53773)

kerng — Sun, 12 Oct 2025 16:46:11 +0000

Article URL: https://embracethered.com/blog/posts/2025/github-copilot-remote-code-execution-via-prompt-injection/

Comments URL: https://news.ycombinator.com/item?id=45559603

Points: 128

# Comments: 18

Machine Learning Attack Series: Image Scaling Attacks (2020)

kerng — Sun, 12 Oct 2025 16:35:09 +0000

Article URL: https://embracethered.com/blog/posts/2020/husky-ai-image-rescaling-attacks/

Comments URL: https://news.ycombinator.com/item?id=45559513

Points: 3

# Comments: 0

Month of AI Bugs (August 2025)

kerng — Sun, 12 Oct 2025 16:33:12 +0000

Article URL: https://monthofaibugs.com/

Comments URL: https://news.ycombinator.com/item?id=45559489

Points: 3

# Comments: 0

Cross-Agent Privilege Escalation: When Agents Free Each Other

kerng — Thu, 25 Sep 2025 07:06:42 +0000

Article URL: https://embracethered.com/blog/posts/2025/cross-agent-privilege-escalation-agents-that-free-each-other/

Comments URL: https://news.ycombinator.com/item?id=45370030

Points: 3

# Comments: 0

AgentHopper: An AI Virus

kerng — Sun, 31 Aug 2025 18:08:52 +0000

Article URL: https://embracethered.com/blog/posts/2025/agenthopper-a-poc-ai-virus/

Comments URL: https://news.ycombinator.com/item?id=45085423

Points: 6

# Comments: 0

Amazon Q Developer: Remote Code Execution with Prompt Injection

kerng — Wed, 27 Aug 2025 19:47:21 +0000

Article URL: https://embracethered.com/blog/posts/2025/amazon-q-developer-remote-code-execution/

Comments URL: https://news.ycombinator.com/item?id=45044215

Points: 2

# Comments: 0

AWS Kiro: Arbitrary Code Execution via Indirect Prompt Injection

kerng — Wed, 27 Aug 2025 19:36:27 +0000

Article URL: https://embracethered.com/blog/posts/2025/aws-kiro-aribtrary-command-execution-with-indirect-prompt-injection/

Comments URL: https://news.ycombinator.com/item?id=45044061

Points: 5

# Comments: 0

Amazon Q Developer for VS Code: Remote Code Execution with Prompt Injection

kerng — Wed, 20 Aug 2025 04:38:47 +0000

Article URL: https://embracethered.com/blog/posts/2025/amazon-q-developer-remote-code-execution/

Comments URL: https://news.ycombinator.com/item?id=44958663

Points: 5

# Comments: 1

GitHub Copilot: Remote code execution via prompt injection (CVE-2025-53773)

kerng — Tue, 12 Aug 2025 23:47:42 +0000

Article URL: https://embracethered.com/blog/posts/2025/github-copilot-remote-code-execution-via-prompt-injection/

Comments URL: https://news.ycombinator.com/item?id=44883108

Points: 15

# Comments: 2

I Spent $500 to Test Devin for Prompt Injection So That You Don't Have To

kerng — Wed, 06 Aug 2025 12:38:01 +0000

Article URL: https://embracethered.com/blog/posts/2025/devin-i-spent-usd500-to-hack-devin/

Comments URL: https://news.ycombinator.com/item?id=44811164

Points: 4

# Comments: 0

Cursor IDE: Arbitrary Data Exfiltration via Mermaid (CVE-2025-54132)

kerng — Mon, 04 Aug 2025 13:06:34 +0000

Article URL: https://embracethered.com/blog/posts/2025/cursor-data-exfiltration-with-mermaid/

Comments URL: https://news.ycombinator.com/item?id=44785234

Points: 4

# Comments: 0

New comment by kerng in "MCP: An (Accidentally) Universal Plugin System"

kerng — Sat, 28 Jun 2025 19:13:08 +0000

When I read about MCP the first time and saw that it requires a "tools/list" API reminded me of COM/DCOM/ActiveX from Microsoft, it had things like QueryInterface and IDispatch. And I'm sure that wasn't the first time someone came up with dynamic runtime discovery of APIs a server offers.

Interestingly, ActiveX was quite the security nightmare for very similar reasons actually, and we had to deal with infamous "DLL Hell". So, history repeats itself.