JadePuffer, a ransomware operation, used an AI agent to carry out much of the intrusion chain from reconnaissance, key theft, ...
Ethereum gossipsub vulnerability CVE-2026-34219 lets any unauthenticated peer crash a validator with a single crafted PRUNE ...
IEEE Spectrum on MSNOpinion

How I turned AI to the dark side

It only took a little prompting to hijack the biggest AI models ...
Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been ...
A threat actor has published hundreds of fake GitHub repositories impersonating legitimate software and security projects to ...
AI Now’s Friendly Fire PoC shows Claude Code and Codex running README-planted payloads on hosts when autonomous command ...
GigaWiper is a destructive backdoor that combines multiple wiping and ransomware-like capabilities into a single operational ...
With the ability to take control of distributed devices at scale, HalluSquatting has the potential to achieve various ...
Anthropic’s AI-run espionage report shows why enterprises need stronger governance for AI agents, MCP connectors, and ...
Wiz says GhostApproval abuses symlinks so AI coding agents write to SSH keys or shell startup files while showing benign ...
An open-source project called 'clawcodex' has been released, which claims to be a reimplementation of Claude Code from scratch in Python. The author asserts that it can significantly reduce API costs.