AI Now’s Friendly Fire PoC shows Claude Code and Codex running README-planted payloads on hosts when autonomous command ...
Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to ...
Nextcloud exposed 367,000 internal records after a hosting misconfiguration left an Elasticsearch database publicly accessible. The leaked files included invoices, contracts, employee details, emails, ...
In the brief history of AI security, the prompt injection has quickly become the top threat. Large language models are ...
The Armored Likho APT is targeting government and electric power organizations with modular RATs and information stealers.
Zscaler found attackers using SEO poisoning and hidden prompts in malicious websites to manipulate AI agents into making cryptocurrency payments.
A new report reveals that AI agents can execute ransomware attacks autonomously, as demonstrated by the case of JADEPUFFER, ...
A new report reveals that AI agents can autonomously execute ransomware attacks, evidenced by the case of JADEPUFFER, which ...
Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.