New Atlas reports on a research team that successfuly used GPT-4 to exploit 87% of newly-discovered security flaws for which a fix hadn't yet been released. This week the same team got even better results from a team of autonomous, self-propagating Large Language Model agents using a Hierarchical Planning with Task-Specific Agents (HPTSA) method: Instead of assigning a single LLM agent trying to solve many complex tasks, HPTSA uses a "planning agent" that oversees the entire process and launches multiple "subagents," that are task-specific... When benchmarked against 15 real-world web-focused vulnerabilities, HPTSA has shown to be 550% more efficient than a single LLM in exploiting vulnerabilities and was able to hack 8 of 15 zero-day vulnerabilities. The solo LLM effort was able to hack only 3 of the 15 vulnerabilities.
"Our findings suggest that cybersecurity, on both the offensive and defensive side, will increase in pace," the researchers conclude. "Now, black-hat actors can use AI agents to hack websites. On the other hand, penetration testers can use AI agents to aid in more frequent penetration testing. It is unclear whether AI agents will aid cybersecurity offense or defense more and we hope that future work addresses this question.

"Beyond the immediate impact of our work, we hope that our work inspires frontier LLM providers to think carefully about their deployments."

Thanks to long-time Slashdot reader schwit1 for sharing the article.

Bill Toulas writes via Bleeping Computer reports: Google is notifying Gmail users that the webmail's Basic HTML view will be deprecated in January 2024, and users will require modern browsers to continue using the service. After that date, all users of the popular webmail service will automatically be redirected to the more modern Standard view, which supports all the latest usability and security features.

The basic HTML view is a stripped-down version of Gmail that does not offer users chat, spell checking, keyboard shortcuts, adding or importing contacts, setting custom "from" addresses, or using rich text formatting. This feature is designed for people living in areas with internet access, using older hardware with limited memory, or using legacy web browsers that do not support current HTML features.

However, one of the biggest reasons users use HTML view is that text-to-speech tools used by users with visual impairment are more reliable, as the Standard view introduces technical complexities that are harder for these tools to manage. Nonetheless, Google has decided to retire Gmail's HTML view without providing specific reasons.

An anonymous reader shared this report from InfoWorld: The uses of WebAssembly, aka Wasm, have grown far beyond its initial target of web applications, according to The State of WebAssembly 2023 report. But some developers remain skeptical. Released September 6 by the Cloud Native Computing Foundation (CNCF) and SlashData, in collaboration with the Linux Foundation, the report finds mostly optimism among software developers about future adoption of Wasm for web and non-web environments... However, about 22% of participants in the report indicated pessimism about Wasm adoption for either the web or non-web environments. Further, 83% of the respondents reported challenges with Wasm including difficulties with debugging and troubleshooting, different performance between runtimes, lack of consistent developer experiences between runtimes, lack of learning materials, and compatibility issues with certain browsers.

The report finds that respondents are using WebAssembly across a wide range of software projects including data visualization (35%), internet of things (32%, artificial intelligence (30%), games (28%), back-end services (27%), edge computing (25%), and more. While Wasm is still primarily used to develop web applications (58%), this is changing thanks to WASI (WebAssembly System Interface), which provides a modular interface for Wasm...

Other findings of the State of WebAssembly 2023 report:

- When migrating existing applications to Wasm, 30% of respondents experience performance benefits of more than 50%.
- JavaScript is the most popular language used with Wasm applications. But Rust stands out in popularity in Wasm projects compared to other use cases...
The article says WebAssembly developers were attracted by "faster loading times, the ability to explore new use cases and technologies, and the ability to share code between projects. Improved performance over JavaScript and efficient execution of computationally intensive tasks also were cited."

Toshiba announced a 2 trillion yen ($14 billion) tender offer on Monday in a move that would take it private, as the scandal-tarnished Japanese electronics and energy giant seeks to turn itself around. From a report: The tender offer led by a buyout fund of major Japanese banks and companies called Japan Industrial Partners starts Tuesday and is priced at 4,620 yen ($32) a share. Chairperson Akihiro Watanabe asked shareholders to back the proposal, saying it is the only option for Toshiba to return to its former strength.

[...] Tokyo-based Toshiba also reported a 25 billion yen ($176 million) loss for the April-June quarter on 704 billion yen ($5 billion) in sales, down nearly 5% from the previous year. It did not give a full fiscal year profit projection, citing uncertainties in its computer chip business. If the proposal succeeds, it will be a major step in Toshiba's yearslong turnaround effort, allowing it to delist from the Tokyo Stock Exchange.

The Associated Press reports: Two apologetic lawyers responding to an angry judge in Manhattan federal court blamed ChatGPT Thursday for tricking them into including fictitious legal research in a court filing... [Attorney Steven A. Schwartz] told U.S. District Judge P. Kevin Castel he was "operating under a misconception ... that this website was obtaining these cases from some source I did not have access to." He said he "failed miserably" at doing follow-up research to ensure the citations were correct.

"I did not comprehend that ChatGPT could fabricate cases," Schwartz said...

The judge confronted Schwartz with one legal case invented by the computer program. It was initially described as a wrongful death case brought by a woman against an airline only to morph into a legal claim about a man who missed a flight to New York and was forced to incur additional expenses. "Can we agree that's legal gibberish?" Castel asked.

Schwartz said he erroneously thought that the confusing presentation resulted from excerpts being drawn from different parts of the case. When Castel finished his questioning, he asked Schwartz if he had anything else to say. "I would like to sincerely apologize," Schwartz said. He added that he had suffered personally and professionally as a result of the blunder and felt "embarrassed, humiliated and extremely remorseful."

He said that he and the firm where he worked — Levidow, Levidow & Oberman — had put safeguards in place to ensure nothing similar happens again.
An attorney for the law firm also told the judge that lawyers have historically had a hard time with technology, particularly new technology. "And it's not getting easier."

At WWDC today, Apple debuted iOS 17. "Highlights include new safety features, a built-in journaling app, a new nightstand mode, redesigned contact cards, better auto-correct and voice transcription, and live voicemail," reports The Verge. "And you'll be able to drop the 'hey' from 'Hey Siri.'" From the report: Your contact book is getting an update with a new feature called posters, which turns contact cards into flashy marquee-like images that show up full-screen on your recipient's iPhone when you call them. They use a similar design language as the redesigned lock screens, with bold typography options and the ability to add Memoji, and will work with third-party VoIP apps. There's also a new live transcription feature for voicemail that lets you view a transcript of the message a caller is leaving in real time. You can choose to ride it out or pick up the call, and it's all handled on-device. You'll also be able to leave a message on FaceTime, too.

Some updates to messages include the ability to filter searches with additional terms, a feature that jumps to the most recent message so you can catch up more easily, transcriptions of voice messages -- similar to what the Pixel 7 series introduced -- and a series of new features called Check In that shares your live location and status with someone else. It can automatically send a message to a friend when you've arrived home, and it can share your phone's battery and cell service status to help avoid confusion if you're in a dead zone. Stickers are getting an overhaul, too, with the ability to add any emoji or photo cutout as a "sticker" positioned on iMessages or anywhere within the system. Live photos can be turned into animated stickers, too, and you can now add effects to stickers.

AirDrop gets an update to send contact information -- cleverly called NameDrop -- which will send your selected email addresses and phone numbers (and your poster) just by bringing two iPhones near each other. It also works between an iPhone and an Apple Watch. Photos can be shared the same way, and if the file is a big one, it's now possible to move out of range while continuing the download. iOS 17 also includes keyboard updates, including enhancements to autocorrect. It now relies on a new language model for better accuracy, plus an easier shortcut to revert to the original word you wrote if necessary. There's now in-line predictive typing and sentence-level autocorrections to correct more grammatical mistakes. It'll finally learn your favorite cuss words, too; Apple's Craig Federighi even made a "ducking" joke onstage. Dictation uses a new AI model, too, that's more accurate.

A new app called Journal automatically suggests moments that you might want to commemorate in a journal entry. Your entries can include photos, music, and activities, and you can schedule reminders for yourself to start writing. It's end-to-end encrypted, too, to keep things private. StandBy is a new mode for charging that turns the screen into a status display with the date and time. It can show information from Live Activities, widgets, and smart stacks and automatically turns on when your phone is in landscape mode while charging. You can swipe to the right to see some of your highlighted photos, and it comes with customizable clockfaces. Siri will surface visual results in StandBy, and the display shifts to a red tone at night to avoid disrupting sleep. Last but not least, Siri gets a boost, too, and finally lets you drop the "hey" from "Hey Siri." It will also recognize back-to-back commands. iOS 17 is available to developers today, with a public beta released next month.