An AI agent carried out the technical execution of a real-world ransomware attack for the first known time, but new details ...
Zscaler found attackers using SEO poisoning and hidden prompts in malicious websites to manipulate AI agents into making cryptocurrency payments.
Agentic coding tools vulnerable to command execution via DNS records ...
Opera's new Paste Protect feature blocks you from copying malicious scripts or commands. It lets you bypass blocks on certain sites you trust, too.
The DuneSlide vulnerabilities enable zero-click prompt injection attacks that escape Cursor's sandbox and execute arbitrary code on the underlying operating system.
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
Researchers say a new jailbreak technique tricked AI models into treating attacker-written text as their own reasoning, ...
Opera has introduced Paste Protect, a security feature designed to block ClickFix-style attacks that trick users into ...
LayerX found that BioShocking could trick AI browsers into leaking credentials by disguising malicious prompts as game rules.
As enterprises rapidly embrace multimodal AI capable of understanding both text and images, security researchers are discovering that these powerful new capabilities introduce equally sophisticated ...
Researchers have discovered two vulnerabilities in the widely used Cursor AI-enabled integrated development environment (IDE) ...
A new prompt injection attack dubbed "BioShocking" could trick AI-powered browsers into treating real-world risky actions as ...