AI-Driven Threats

AI Zero-Day in the Wild and Mini Shai-Hulud Worm Hits OpenAI

Google confirms first AI-developed exploit, TeamPCP worm compromises Mistral, Guardrails, OpenAI with valid SLSA attestations and Claude Code hooks

#110 - AI Attacks OT: Claude Used Autonomously in Water Utility Breach

Claude Code one-click RCE, Five Eyes agentic AI warning, and a Hugging Face typosquat hitting 244,000 downloads.

#109 - AI Developer Toolchain Under Attack: DPRK LLM Malware, Gemini CLI RCE

How the coding assistants, agent marketplaces, and ML libraries powering AI development became this week's primary supply chain attack surface.

#108 - Vercel Breach via AI Tool OAuth: Supply Chain Attacks Hit Production

Vercel breach, the Shai-Hulud npm worm targeting AI/MCP configs, and Claude Mythos earning its first Firefox CVEs.

#107 - AI Coding Agents Hijacked: MCP Flaw, Claude Mythos, Prompt Injection

#106 - AI Credential Harvest Scales as Agentic Attack Surface Mapped

Systematic prompt injection chains, 35,000 exposed Gemini keys, and $893M in FBI-confirmed AI fraud losses define a week of convergent risk.

#105 - North Korea's AI Malware, Claude Code Exploit, and the AI Supply Chain Breach

AI threat intelligence on DPRK operationalising LLMs in attacks, critical Claude Code prompt injection, and TeamPCP's cascade through the AI developer supply chain

#104 - Agentic AI Attacks Confirmed: Nation-State LLM Exploits Hit Infrastructure

Chinese APT agentic framework succeeds against 30 targets; TeamPCP compromises AI toolchain to breach 1,000+ cloud environments via LiteLLM and Trivy supply chain campaign.

#103 - The Developer Endpoint Is the New Perimeter

Shadow AI, Supply Chain Cascades, and the Economics of AI-Enabled Fraud

#102 - AI Agents Go Rogue: Autonomous Attacks Hit Enterprise LLM Platforms

Autonomous agents breach McKinsey's LLM, QUIETVAULT weaponises coding tools, and North Korea operationalises agentic AI across the kill chain

#101 - When AI Becomes the Attack Team

How nation-states, cybercriminals, and AI agent vulnerabilities converged in one week — and what it means for your Monday morning

#100 - The Week the Theory Became Reality

One Operator. Six Hundred Firewalls. The Skill Gap Is Gone.

#099 - When your AI dev tools become the attack vector

The Developer's Dilemma: Your AI Coding Stack Is Now a Weapon

#098 - State Hackers Weaponize Google Gemini for Recon and Code

Microsoft warns of AI recommendation poisoning attacks, and malicious ChatGPT extensions compromise 260k users

#097 - Claude Opus 4.6 finds 0-days

Docker's AI assistant vulnerability, deepfake job applicants, and AI browser hijacking attacks

#096 - Viral Moltbot becomes security nightmare

LLMjacking bazaar hijacks compute, VS Code malware hits 1.5M, AI backdoors target developers

#095 - AI agents write zero-day exploits

Google Gemini calendar attack, AI-generated malware insights

#094 - ServiceNow's BodySnatcher lets anyone steal identities

Block's red team tricks AI agent, new Copilot attack method, and North Korean deepfake infiltrators

#093 - ChatGPT's new zombie attack

Bypasses all defenses to steal user data, deepfake job applicants infiltrating companies

#092 - Claude's browser takeover begins

Cyber Forecast 2026, Microsoft agent exploits, Grok faces EU investigation

#091 - LangChain's critical security flaw

AI WannaCry prediction and Eurostar chatbot jailbreak

#090 - AI pen tester beats 9/10 humans

VPN harvests AI chats, NK's $2B crypto heist

#089 - Google Ads weaponize ChatGPT conversations

Mac users tricked into installing AMOS stealer. PLUS: Gemini Enterprise zero-click hack and UK's prompt injection warning

#088 - AI Agents Find Hidden Vulnerabilities

Zero-click drive wiper, AI gaslighting security scanners, and North Korea's remote worker scheme

#087 - DeepSeek's political bias creates bugs

WormGPT 4 and other malicious LLMs helping hackers, HashJack attacks via URL fragments, Amazon's AI bug hunters