Researchers at the AI Now Institute developed a proof-of-concept exploit showing common AI tools used for security could ...
A new attack technique dubbed HalluSquatting turns AI assistants’ tendency to hallucinate into a scalable infection vector.
A newly-disclosed exploit in Claude Code’s ‘auto-mode’ leaves developers facing remote code execution (RCE) vulnerabilities ...
A researcher says three patched OpenClaw flaws could enable credential theft, privilege escalation, and host code execution ...
JadePuffer could be the first reported case of a ransomware attack driven by AI from start to finish. How can businesses ...
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
Security vulnerabilities in the self-hosting platform offer attack possibilities with low, albeit narrowly defined, access ...
BeyondTrust warned customers to patch two critical security flaws in its Remote Support (RS) and Privileged Remote Access ...
Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
The flaw, which impacted Amazon, Anthropic, Google, Cursor and others, let the agent give the human false information on ...
Researchers warn AI agents could be tricked into downloading malicious code by exploiting hallucinations that cause chatbots ...
Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been ...