Tenet Security researchers reveal how new “agentjacking” attacks could trick coding agents into executing arbitrary code ...

Chrome's WebMCP guidance warns that AI agents can be manipulated through the tools they are built to trust.

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

This is probably the dictionary illustration for "deceptively simple." ...

At the DASH conference, Datadog presents new features for autonomous IT operations and AI security with Bits AI SRE, AI Guard ...

A new benchmark study found AI agents remain vulnerable to prompt injection attacks as companies increasingly roll out the ...

Researchers say current AI agents fail to consistently resist prompt injection attacks, exposing enterprises to failures that ...

This week’s recap covers exploited flaws, supply chain attacks, phishing kits, AI lures, macOS stealers, urgent CVEs, tools, ...

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...

Two OS command injection flaws can be exploited remotely, without authentication, for arbitrary code execution.