Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to ...
Vienna, Austria, June 25, 2026 — digna, the European data quality and observability platform, today announced the release of digna 2026.06, introducing a new Python SDK and Docker deployment support ...
Rogue Agent, a vulnerability in Google Cloud Dialogflow CX, allowed attackers to control agents and exfiltrate sensitive data.
A threat group researchers call "Armored Likho" has gained access to government agencies and electrical power entities in ...
SentinelOne details Gaslight, a Rust-based macOS implant linked to North Korea-aligned actors that uses prompt injection to ...
Multiple weaponized proof-of-concept (PoC) exploits on GitHub delivered a Python-based remote access trojan (RAT) called ChocoPoC that can execute commands and steal sensitive data. However, ChocoPoC ...
An AI assistant for high-entropy alloy (HEA) electrocatalysis named ChatHEA provided a helping hand not just to extract data ...
Zscaler found attackers using SEO poisoning and hidden prompts in malicious websites to manipulate AI agents into making cryptocurrency payments.
RapidFort, a leader in software supply chain security with the largest distribution of curated truly open-source software, and ReversingLabs (RL), the trusted name in file and software security, ...
Attackers have begun embedding hidden instructions in websites to target AI agents, according to new research. Zscaler's ...
ESET Research has released its H1 2026 Threat Report with statistics from December 2025 through May 2026. ClickFix – a social engineering technique leveraging fake error messages – has expanded into ...
Two companies already collaborating with the world's largest pharma organizations are now working together to move open-source AI into regulated production ...