Max-severity flaw in ChromaDB for AI apps allows server hijacking

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to ...
BMJ Evidence-Based Medicine

Impact of prompt engineering on large language models for risk of bias assessment: a comparative study

Objectives To evaluate the performance of large language models (LLMs) in risk of bias assessment and to examine whether ...
The Hacker News

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

Turla turns Kazuar into a 3-module P2P botnet, enabling stealthy C2, resilient tasking, and persistent access.
Analytics Insight

7 Trusted Data Collection Services for Enterprise Businesses in 2026

Your data pipeline isn't just a back-end function. It's the intelligence layer that decides whether your business acts before competitors do or catches up after the fact. Finding a trusted full ...

Keycard Launches Identity and Access for Multi-Agent Apps

Keycard for Multi-Agent Apps Lets Developers Build Secure Autonomous Applications Where Access is Delegated Between Agents, on a Per-Task Basis, Without Standing PrivilegesSAN FRANCISCO, May 14, 2026 ...
The Hacker NewsOpinion

ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories

Weekly ThreatsDay Bulletin: supply chain attacks, fake support lures, AI tampering, data leaks, ransomware, and exploited ...
Microsoft

Kazuar: Anatomy of a nation-state botnet

Kazuar, a sophisticated malware family attributed to the Russian state actor Secret Blizzard, has been under constant development for years and continues to evolve in support of espionage-focused ...
Heart

Temporal trends in characteristics, management and prognosis of patients with acute heart failure through two repeated snapshots

Background Real-life data is very useful for gaining a better understanding of care in practice and identifying areas for ...

Coinbase-backed x402 adds batch settlement for AI agent payments

Coinbase launched batch settlement for the x402 payment protocol, seeking to create a scalable foundation for autonomous AI ...
Cryptopolitan

Base adds batch settlement to x402, opening the door to sub-cent crypto payments

Base creator Jesse Pollak announced on May 13 that the x402 payment protocol now supports batched settlement, in an X post.

Running Claude Code or Claude in Chrome? Here's the audit matrix for every blind spot your security stack misses

Four research teams found the same confused deputy failure in Claude across three surfaces in 48 hours. This audit matrix ...