Threat actors compromised AsyncAPI packages and weaponized trusted CI/CD workflows to distribute malware through npm. This ...
Threat researchers at cloud security firm Sysdig have disclosed what they describe as the first documented ransomware operation carried out end-to-end by an autonomous AI agent, with no human typing ...
An exposed attack server led Lexfo to three Microsoft 365 phishing operations using Evilginx and device code abuse to capture ...
The Shai-Hulud 2.0 supply chain attacks exposed a structural weakness in enterprise security: how organizations determine ...
Discover how the Rogue Agent vulnerability in Google Dialogflow CX enabled persistent AI agent compromise, data exfiltration, ...
Cloud security firm Sysdig has documented what it says is the first ransomware attack carried out from initial exploitation through encryption by an autonomous AI agent, without a human directing each ...
Slopsquatting represents an emerging supply chain threat made possible by AI hallucinations. As developers increasingly rely ...
JadePuffer, a ransomware operation, used an AI agent to carry out much of the intrusion chain from reconnaissance, key theft, ...
Researchers at the AI Now Institute developed a proof-of-concept exploit showing common AI tools used for security could ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
GigaWiper is a destructive backdoor that combines multiple wiping and ransomware-like capabilities into a single operational ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results