eWeek

LangChain AI Vulnerability Exposes Millions of Apps

A critical LangChain AI vulnerability exposes millions of apps to theft and code injection, prompting urgent patching and ...

Critical ‘LangGrinch’ vulnerability in langchain-core puts AI agent secrets at risk

The vulnerability, tracked as CVE-2025-68664 and dubbed “LangGrinch,” has a Common Vulnerability Scoring System score of 9.3.
Dark Reading

'Fake Proof' and AI Slop Hobble Defenders

In the React2Shell saga, nonworking and trivial proof-of-concept exploits led to a false sense of security. Can the onslaught ...
Hosted on MSN

Claude AI can be tricked to leak private company data

Recent revelations have exposed a critical flaw in the AI model developed by Anthropic, known as Claude. This vulnerability allows the AI to be manipulated into disclosing sensitive corporate ...
Homeland Security Today

Research Team Identifies AI Agent Vulnerability Enabling Cross-System Exploits

A research team has identified and demonstrated a vulnerability in emerging agentic AI systems, including multi-agent control platforms (MCPs) and AI browsers, coined “IdentityMesh.” This newly ...
The Register on MSN

From AI to analog, cybersecurity tabletop exercises look a little different this year

Practice makes perfect It's the most wonderful time of the year … for corporate security bosses to run tabletop exercises, ...
SD Times

AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks, Veracode Research Reveals

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
Geeky Gadgets

Zero-Click Attack AI Vulnerabilities : Hackers Don’t Need You to Click Anymore

What if your device could be hacked without you clicking a single link, downloading a file, or even knowing it happened? This isn’t a hypothetical nightmare, it’s the reality of zero-click attacks, a ...
CSOonline

Putting AI-assisted ‘vibe hacking’ to the test

Valuable tools for experienced attackers and researchers, LLMs are not yet capable of creating exploits at a prompt, researchers found in a test of 50 AI models — some of which are getting better ...
TechRepublic

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’ Your email has been sent A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and ...
Geeky Gadgets

AI Under Siege : How Hackers Are Exploiting Vulnerable AI Systems

What if the AI systems we trust to power our lives, our cars, our healthcare, even our financial systems, could be hijacked with just a few cleverly crafted lines of code? It’s not just a dystopian ...
PC World

I saw how an “evil” AI chatbot finds vulnerabilities. It’s as scary as you think

On the top floor of San Francisco’s Moscone convention center, I’m sitting in one row of many chairs, most already full. It’s the start of a day at the RSAC’s annual cybersecurity conference, and ...