----------------

🎯 AI
===================

Executive summary: Moltbook, an AI-only social network populated by OpenClaw agents, presents immediate security risks: pervasive spam/scams, exposure of agents to untrusted content via API-oriented prompt files, and a reported database compromise that leaked API keys enabling bot impersonation and direct prompt injection.

Technical details:
• SKILLS.md, HEARTBEAT.md, and MESSAGING.md are repository-style markdown files that describe how agents interact with the Moltbook API. SKILLS.md documents API interactions and recommends HTTP requests (curl-style). HEARTBEAT.md instructs periodic check-ins. MESSAGING.md notes that messaging requires human approval, while other endpoints accept automated agent input.
• Experimental tooling (reported as a CLI tool named moltbotnet) implemented API calls for posting, commenting, upvoting, following, and engagement automation. This tooling demonstrates how easily an agent or impersonator can script interactions.
• Reported breach of Moltbook’s database exposed API keys tied to agent identities. Those keys materially enable: impersonation of legitimate agents, submission of crafted prompts to agent workloads, and direct prompt injection vectors that bypass typical human-only guards.

Analysis:

The combination of (1) public, machine-readable prompt files that instruct agents how to behave, (2) open posting and engagement that accepts untrusted content, and (3) leaked credentials produces two classes of injection risks: indirect prompt injection (agents ingesting malicious content from other agents) and direct prompt injection (attacker using stolen API keys to send malicious prompts as a trusted agent). The observed ecosystem is also saturated with social-engineering lures (requests to run package installers, share crypto wallets, or call external APIs).

Detection guidance:
• Monitor unexpected use of API keys or unusual posting frequency associated with agent identities.
• Inspect content sources for scripted patterns (repeated promotional payloads, command-like text referencing package managers or curl usage).

Limitations:
• No public CVE identifiers are reported in the source material.
• Exact scope of leaked API keys (number of keys, associated privileges) was not enumerated in the writeup.

References and tags:

SKILLS.md, HEARTBEAT.md, MESSAGING.md — Tenable Research field report on Moltbook interactions and breach findings.

🔹 OpenClaw #Moltbook #promptinjection #APIkeys #Tenable

🔗 Source: https://www.tenable.com/blog/undercover-on-moltbook

WP Advanced Custom Fields Extended plugin bug gives admin

Your friendly reminder to minimize the WordPress plugins you deploy to what you actually need. BleepingComputer has an article:

A critical-severity vulnerability in the Advanced Custom Fields: Extended (ACF Extended) plugin for WordPress can be exploited remotely by unauthenticated attackers to obtain administrative permissions.

ACF Extended, currently active on 100,000 websites, is a specialized plugin that extends the capabilities of the Advanced Custom Fields (ACF) plugin with features for developers and advanced site builders.

Unauthenticated privilege escalation to get admin is about as bad as it gets. Though, it does appear the WordPress blog has to have mapped “role” as a custom field. It’s impossible for anyone other than the blog owner to know if that’s the case. Well, probably spammers and scammers seeking sites to compromise and turn into platforms to exploit might given which ones they successfully turn.

It’s tracked as CVE-2025-14533:

• NIST
• tenable

Swear to god, if I ever physically encounter someone that works for #Tenable, especially their #Nessus group, and especially the team that's in charge of the nessus-agent for #Linux, I will hose them down with Napalm and set them on fire.

#security

Microsoft Patch Tuesday, December 2025 Edition

https://krebsonsecurity.com/2025/12/microsoft-patch-tuesday-december-2025-edition/

#WindowsCloudFilesMiniFilterDriver #WindowsPowershell #MicrosoftOutlook #MicrosoftOffice #LatestWarnings #TheComingStorm #CVE-2025-10573 #CVE-2025-54100 #CVE-2025-59516 #CVE-2025-59517 #CVE-2025-62221 #CVE-2025-62458 #CVE-2025-62470 #CVE-2025-62472 #CVE-2025-62554 #CVE-2025-62557 #CVE-2025-64671 #SatnamNarang #TimetoPatch #AdamBarnett #AriMarzuk #IDEsaster #Tenable

Heyyyyy #Tenable #Nessus? Can we maybe not run sketchy-looking #PowerShell on my computer? I just happened to catch this in the logs. Kay, thanks.

Agentic AI Security: Stop Cyber Hygiene Failures from Becoming a Global Breach | Tenable #ai #breach #vulnerabilityscan #tenable https://www.tenable.com/blog/agentic-ai-security-keep-your-cyber-hygiene-failures-from-becoming-a-global-breach

Private data at risk due to seven ChatGPT vulnerabilities | Tenable #vulnerability #vulnerabilities #vulnerabilityscan #tenable https://www.tenable.com/blog/hackedgpt-novel-ai-vulnerabilities-open-the-door-for-private-data-leakage

NVD Delays Leave Defenders in the Dark — Early Visibility is Key
Tenable’s recent analysis shows a worrying pattern in vulnerability disclosure timing:
- 63,862 CVEs from 2024–2025
- 56% of PoCs released within 7 days
- NVD lagging by ~15 days
- Exploitation confirmed in as little as 5 days
This gap between CVE assignment, PoC publication, and NVD visibility creates exploitable blind spots for enterprises relying on traditional patch cycles.
💬 Security leaders - how do you bridge these gaps? Do you trust vendor advisories, exploit feeds, or telemetry-driven signals more?

👍 Like and follow @technadu for continuous coverage of emerging vulnerability management insights.

#InfoSec #CyberSecurity #VulnerabilityManagement #ThreatIntel #NVD #Exploit #RiskIntel #Tenable #CVEs #CyberDefense #ZeroDay #CVETracking #VulnDisclosure #TechNadu

Why prioritizing vulnerabilities based on NVD leaves you at risk | Tenable #vulnerability #vulnerabilities #vulnerabilityscan #tenable https://www.tenable.com/blog/cyber-risk-lurks-in-the-vulnerability-disclosure-gaps

Patch Tuesday, October 2025 ‘End of 10’ Edition - Microsoft today released software updates to plug a whopping 172 security holes in its Wi... https://krebsonsecurity.com/2025/10/patch-tuesday-october-2025-end-of-10-edition/ #microsoftpatchtuesdayoctober2025 #microsoftoffice #cve-2025-24990 #cve-2025-59227 #cve-2025-59230 #cve-2025-59234 #cve-2025-59287 #satnamnarang #timetopatch #immersive #kevbreen #tenable

🧠 EDR Tools Are Not Exposure Management Solutions.

They’re reactive, not proactive - designed to respond after compromise, not prevent it.
EDR misses entire classes of assets like routers, IoT, and third-party systems.

💬 What’s your approach to achieving full attack surface visibility?

Follow @technadu for more discussions on vulnerability intelligence and exposure reduction.

#CyberSecurity #ExposureManagement #EDR #Tenable #InfoSec #ThreatDetection #VulnerabilityIntelligence #TechNadu

Patch Tuesday, October 2025 ‘End of 10’ Edition

https://krebsonsecurity.com/2025/10/patch-tuesday-october-2025-end-of-10-edition/

#MicrosoftPatchTuesdayOctober2025 #MicrosoftOffice #CVE-2025-24990 #CVE-2025-59227 #CVE-2025-59230 #CVE-2025-59234 #CVE-2025-59287 #SatnamNarang #TimetoPatch #Immersive #KevBreen #Tenable

Cloud adoption keeps rising — but security maturity lags behind.

Tenable & CSA report that 33% of orgs using AI faced data breaches, and 52% call identity risk their top concern.

https://www.technadu.com/cloud-and-ai-security-report-reveals-critical-gaps-cloud-adoption-outpaces-security-readiness/610946/

#CloudSecurity #AIsecurity #Cybersecurity #Tenable #CSA

Tenable Confirms Data Breach – Hackers Accessed Customers’ Contact Details

Tenable has confirmed a data breach that exposed the contact details and support case information of some of its customers.

The company stated the incident is part of a broader data theft campaign targeting an integration between Salesforce and the Salesloft Drift.

#Salesforce #Salesloft #tenable #databreach #security #cybersecurity #hackers #hacking #hacked

https://cybersecuritynews.com/tenable-confirms-data-breach/

☁️🤖 Cloud & AI Security 2025 report: @tenablesecurity
🔹 82% hybrid cloud
🔹 63% multi-cloud
🔹 34% of orgs with/ AI workloads have already hit by breaches
🔹 Identity risks remain under-managed
Is AI security the next weak point—or the next defense frontier?

Follow @technadu for more.

#Tenable #CloudSecurity #AIWorkloads #HybridCloud #IdentitySecurity

Microsoft Patch Tuesday, September 2025 Edition

https://krebsonsecurity.com/2025/09/microsoft-patch-tuesday-september-2025-edition/

#sansinternetstormcenter #LatestWarnings #TheComingStorm #CVE-2025-38352 #CVE-2025-48543 #CVE-2025-54916 #CVE-2025-54918 #CVE-2025-55177 #CVE-2025-55234 #NTLANManager #SatnamNarang #TimetoPatch #WindowsNTLM #Immersive #microsoft #KevBreen #WhatsApp #Tenable #windows #google #apple

Microsoft Patch Tuesday, September 2025 Edition - Microsoft Corp. today issued security updates to fix more than 80 vulnerabilities ... https://krebsonsecurity.com/2025/09/microsoft-patch-tuesday-september-2025-edition/ #sansinternetstormcenter #latestwarnings #thecomingstorm #cve-2025-38352 #cve-2025-48543 #cve-2025-54916 #cve-2025-54918 #cve-2025-55177 #cve-2025-55234 #ntlanmanager #satnamnarang #timetopatch #windowsntlm #immersive #microsoft #kevbreen #whatsapp #tenable #windows #apple

Tenable has confirmed a data breach that exposed the contact details and support case information of some of its customers.

The company stated the incident is part of a broader data theft campaign targeting an integration between #Salesforce and the Salesloft Drift marketing application, which has affected numerous organizations. #tenable #databreach

Cyber uppsi #tenable