A North Korean APT has crafted malicious software packages to appeal to AI coding agents, while ‘slopsquatting’ shows the ...

Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...

ClaudeBleed, a vulnerability in Claude in Chrome, allows malicious extensions to hijack the AI agent for nefarious purposes.

Four npm packages linked to SAP's Cloud Application Programming Model were hijacked. The hackers added code that steals ...

TrendAI™, the global leader in AI cybersecurity, today released new data from a global study* revealing a growing governance ...

A White House push for nuclear energy means Brookfield is about to test one of its core claims: that it excels at managing ...

In March 2026, someone hijacked a maintainer account for Axios, a JavaScript HTTP library downloaded more than 45 million ...

The approval of donidalorsen provides an important new option for managing hereditary angioedema, particularly for patients ...

Qualys ANZ managing director Sam Salehi joins the Cyber Uncut podcast to expose the expanding AI attack surface, the ...

Malicious web prompts can weaponize AI without your input. Indirect prompt injection is now a top LLM security risk. Don't treat AI chatbots as fully secure or all-knowing. Artificial intelligence (AI ...

Security leaders must adapt large language model controls such as input validation, output filtering and least-privilege access for artificial intelligence systems to prevent prompt injection attacks.

Penetration tests of AI systems expose significantly higher severe-flaw density when compared to legacy apps. New attack ...