360SOFTY

Insights

Engineering Insights

Practical writing on software architecture, SaaS products, AI automation, legacy modernisation, and the business of building reliable systems.

RSS

Curated links from external sources — not 360Softy original articles.

External
The Hacker News

ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface

Cybersecurity researchers have disclosed details of a vulnerability in OpenAI ChatGPT that leverages the artificial intelligence (AI) assistant's implicit trust in Markdown links and images to trigger prompt injections and open the door to phishing attacks. The technique has been codenamed ChatGPhish by Permiso Security. "The chatgpt.com response renderer trusts Markdown links and Markdown

The Hacker NewsRead original
ExternalSoftware Engineering
DZone

5 Common Security Pitfalls in Serverless Architectures

Serverless architecture removes much of the overhead costs tied to infrastructure, but it shifts security responsibilities toward code and permissions. Instead of managing servers, developers must focus on how functions interact and what they trust. 1. Over-Privileged IAM Roles One of the most widespread issues in serverless security is the use of overly permissive identity and access management (IAM) roles, or the granting of functions more permissions than they actually need. The principle of

DZoneRead original

Work with 360Softy

Building a SaaS product, AI system, or business platform?

Book a free consultation and we will tell you honestly whether we can help.

Book a consultationView our services →