This website uses cookies
Read our Privacy policy and Terms of use for more information.
Jun 14, 2026
•
8 min read
New attack class achieves 85% compromise rate against autonomous AI agents in development pipelines. Prompt injection emerges as reliable exploitation vector.
Jun 7, 2026
9 min read
From Meta's hijacked support bot to a free LLM worm spreading through enterprise networks - how AI's trust models became this week's attack surface.
May 31, 2026
7 min read
An LLM agent autonomously emptied a database in under two minutes, while RCEs in AI orchestration runtimes and coding agents widened the attack surface.
May 24, 2026
Megalodon hits 5,561 GitHub repos, ChromaDB max-severity RCE exposes the AI infrastructure layer, and one fraudster replicates a full criminal team with jailbroken Gemini.
May 17, 2026
10 min read
Google confirms first AI-developed exploit, TeamPCP worm compromises Mistral, Guardrails, OpenAI with valid SLSA attestations and Claude Code hooks
May 10, 2026
11 min read
Claude Code one-click RCE, Five Eyes agentic AI warning, and a Hugging Face typosquat hitting 244,000 downloads.
May 3, 2026
How the coding assistants, agent marketplaces, and ML libraries powering AI development became this week's primary supply chain attack surface.
Apr 26, 2026
Vercel breach, the Shai-Hulud npm worm targeting AI/MCP configs, and Claude Mythos earning its first Firefox CVEs.
Apr 19, 2026
Apr 12, 2026
19 min read
Systematic prompt injection chains, 35,000 exposed Gemini keys, and $893M in FBI-confirmed AI fraud losses define a week of convergent risk.
Apr 5, 2026
16 min read
AI threat intelligence on DPRK operationalising LLMs in attacks, critical Claude Code prompt injection, and TeamPCP's cascade through the AI developer supply chain
Mar 29, 2026
20 min read
Chinese APT agentic framework succeeds against 30 targets; TeamPCP compromises AI toolchain to breach 1,000+ cloud environments via LiteLLM and Trivy supply chain campaign.
Mar 22, 2026
Shadow AI, Supply Chain Cascades, and the Economics of AI-Enabled Fraud
Mar 15, 2026
Autonomous agents breach McKinsey's LLM, QUIETVAULT weaponises coding tools, and North Korea operationalises agentic AI across the kill chain
Mar 8, 2026
17 min read
How nation-states, cybercriminals, and AI agent vulnerabilities converged in one week — and what it means for your Monday morning
Mar 1, 2026
One Operator. Six Hundred Firewalls. The Skill Gap Is Gone.
Feb 22, 2026
The Developer's Dilemma: Your AI Coding Stack Is Now a Weapon
Feb 15, 2026
Microsoft warns of AI recommendation poisoning attacks, and malicious ChatGPT extensions compromise 260k users
Feb 8, 2026
Docker's AI assistant vulnerability, deepfake job applicants, and AI browser hijacking attacks
Feb 1, 2026
LLMjacking bazaar hijacks compute, VS Code malware hits 1.5M, AI backdoors target developers
Jan 25, 2026
Google Gemini calendar attack, AI-generated malware insights
Jan 18, 2026
Block's red team tricks AI agent, new Copilot attack method, and North Korean deepfake infiltrators
Jan 11, 2026
Bypasses all defenses to steal user data, deepfake job applicants infiltrating companies
Jan 4, 2026
Cyber Forecast 2026, Microsoft agent exploits, Grok faces EU investigation
Dec 28, 2025
AI WannaCry prediction and Eurostar chatbot jailbreak
