AI

Prompt injection still drives most agentic AI security failures in production

Prompt injection still drives most agentic AI security failures in production 2026-06-11 at 08:43 By Anamarija Pogorelec A backdoor sat on PyPI for three hours in March 2026. Nearly 47,000 downloads occurred during the window. The compromised package, LiteLLM, serves as the language-model gateway for CrewAI, DSPy, Microsoft GraphRAG, and dozens of other AI agent […]

Prompt injection still drives most agentic AI security failures in production Read More »

Organizations can’t see much of their mobile AI activity

Organizations can’t see much of their mobile AI activity 2026-06-11 at 08:43 By Anamarija Pogorelec Organizations have limited visibility into AI activity on mobile devices despite security leaders expressing confidence in their AI governance, according to Lookout’s “Solving for the Mobile AI Blind Spot: Executive Confidence Meets Technical Reality” report. Mobile AI visibility gaps Enterprises

Organizations can’t see much of their mobile AI activity Read More »

Record Microsoft Patch Tuesday, fresh zero-day

Record Microsoft Patch Tuesday, fresh zero-day 2026-06-10 at 14:23 By Zeljka Zorz Microsoft marked its largest-ever Patch Tuesday this month, by shipping fixes for nearly 200 vulnerabilities. Within hours, “Nightmare Eclipse”, the researcher behind weeks of escalating Windows exploit releases, dropped a proof-of-concept exploit for a new zero-day: “RoguePlanet”, which abuses a race condition in

Record Microsoft Patch Tuesday, fresh zero-day Read More »

Apple extends Private Cloud Compute to third-party data centers

Apple extends Private Cloud Compute to third-party data centers 2026-06-10 at 14:22 By Anamarija Pogorelec Apple is bringing its Private Cloud Compute (PCC) platform to Google Cloud, expanding the infrastructure behind Apple Intelligence to third-party data centers. Introduced in 2024, PCC provides cloud-based processing for AI workloads that exceed the capabilities of on-device models while

Apple extends Private Cloud Compute to third-party data centers Read More »

Anthropic’s Claude Fable 5 is out for public use, with safeguards for high-risk requests

Anthropic’s Claude Fable 5 is out for public use, with safeguards for high-risk requests 2026-06-10 at 14:22 By Sinisa Markovic Days after publishing research on how advanced AI systems could amplify cyber operations in the wrong hands, Anthropic released Claude Fable 5, a Mythos-class model for general use. “Releasing a model this capable comes with

Anthropic’s Claude Fable 5 is out for public use, with safeguards for high-risk requests Read More »

After AI Reaches Production: 12 Ways Security Teams Can Take Control

After AI Reaches Production: 12 Ways Security Teams Can Take Control 2026-06-10 at 14:22 By Joshua Goldfarb Security teams need more than visibility into AI applications, they need a repeatable framework for monitoring, investigating, and defending them in production. The post After AI Reaches Production: 12 Ways Security Teams Can Take Control appeared first on

After AI Reaches Production: 12 Ways Security Teams Can Take Control Read More »

Every set of AI guardrails can be broken by the right prompt

Every set of AI guardrails can be broken by the right prompt 2026-06-10 at 11:31 By Mirko Zorz Companies that build AI systems wrap them in guardrails meant to block harmful output, including deepfakes, malware, and instructions for making biological weapons or illicit drugs. When a user prompts the system for such content, the guardrails

Every set of AI guardrails can be broken by the right prompt Read More »

NOVA microhypervisor brings AMD DMA isolation to shared AI infrastructure

NOVA microhypervisor brings AMD DMA isolation to shared AI infrastructure 2026-06-10 at 09:55 By Mirko Zorz BlueRock has issued the latest open-source release of its NOVA Microhypervisor with DMA remapping support for AMD platforms that have IOMMU hardware virtualization. The capability is enabled by default and extends hardware-level isolation across virtual machines, devices, and memory

NOVA microhypervisor brings AMD DMA isolation to shared AI infrastructure Read More »

Product showcase: Staying ahead of the threat horizon with Aunoo

Product showcase: Staying ahead of the threat horizon with Aunoo 2026-06-10 at 09:55 By Help Net Security Aunoo is an open strategic intelligence platform that uses AI agents to monitor intelligence sources, including for cybersecurity, to compile a daily briefing and alert on defined criteria. Each source is checked for credibility and quality before it

Product showcase: Staying ahead of the threat horizon with Aunoo Read More »

OpenSSL Patches High-Severity Vulnerability Found With AI

OpenSSL Patches High-Severity Vulnerability Found With AI 2026-06-09 at 20:08 By Eduard Kovacs A total of 18 vulnerabilities have been patched in the latest OpenSSL releases, including many that were potentially discovered by AI. The post OpenSSL Patches High-Severity Vulnerability Found With AI appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

OpenSSL Patches High-Severity Vulnerability Found With AI Read More »

Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails 

Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails  2026-06-09 at 20:08 By Eduard Kovacs The AI giant also announced that Project Glasswing partners are being given access to the upgraded Mythos 5. The post Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails  appeared first on SecurityWeek. This article is an excerpt

Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails  Read More »

New Platform Uses Cryptographic Invisibility to Protect AI-Built Applications

New Platform Uses Cryptographic Invisibility to Protect AI-Built Applications 2026-06-09 at 18:18 By Kevin Townsend Atsign’s AI Architect applies cryptographic protections to agentic software development, aiming to prevent attackers from exploiting vulnerabilities by making application identities effectively invisible. The post New Platform Uses Cryptographic Invisibility to Protect AI-Built Applications appeared first on SecurityWeek. This article

New Platform Uses Cryptographic Invisibility to Protect AI-Built Applications Read More »

Claude Mythos Turns N-Days Into N-Hours With Rapid Exploit Creation

Claude Mythos Turns N-Days Into N-Hours With Rapid Exploit Creation 2026-06-09 at 18:18 By Ionut Arghire Public LLM models with safeguards turned off can also build working exploits, increasing patch gap risks. The post Claude Mythos Turns N-Days Into N-Hours With Rapid Exploit Creation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Claude Mythos Turns N-Days Into N-Hours With Rapid Exploit Creation Read More »

LiteLLM vulnerability under active attack, CISA warns (CVE-2026-42271)

LiteLLM vulnerability under active attack, CISA warns (CVE-2026-42271) 2026-06-09 at 15:21 By Zeljka Zorz A command injection vulnerability (CVE-2026-42271) in BerryAI’s LiteLLM open-source AI gateway is being exploited by attackers, the US Cybersecurity and Infrastructure Security Agency (CISA) confirmed by adding the flaw to its Known Exploited Vulnerabilities catalog on Monday. About CVE-2026-42271 LiteLLM is

LiteLLM vulnerability under active attack, CISA warns (CVE-2026-42271) Read More »

Will AI Kill the Bug Bounty Industry?

Will AI Kill the Bug Bounty Industry? 2026-06-09 at 14:00 By Kevin Townsend Anthropic’s Mythos is accelerating vulnerability discovery to machine speed, forcing the bug bounty industry and offensive security teams to adapt to a future where finding flaws is no longer the hard part. The post Will AI Kill the Bug Bounty Industry? appeared

Will AI Kill the Bug Bounty Industry? Read More »

The security questions around Chinese AI coding models in U.S. software

The security questions around Chinese AI coding models in U.S. software 2026-06-09 at 08:46 By Anamarija Pogorelec Software developers across the United States are using AI models built in China to write, debug, and review code, drawn by prices below those of American alternatives. These models carry risks for the security of American software, according

The security questions around Chinese AI coding models in U.S. software Read More »

Treating AI agents like service accounts for federated query security

Treating AI agents like service accounts for federated query security 2026-06-09 at 08:46 By Mirko Zorz In this interview with Help Net Security, Paras Malhotra, CISO at Starburst, explains how the company handles data governance across federated query environments. Topics include layering Starburst’s access controls above native source permissions, tiering vendor risk across more than

Treating AI agents like service accounts for federated query security Read More »

Everybody Is Vibe Coding But Nobody Told the Security Team

Everybody Is Vibe Coding But Nobody Told the Security Team 2026-06-08 at 19:16 By Danelle Au AI-driven development is not something organizations can or should block. But it must be governed. The post Everybody Is Vibe Coding But Nobody Told the Security Team appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Everybody Is Vibe Coding But Nobody Told the Security Team Read More »

OpenAI is locking down parts of ChatGPT to reduce data theft risks

OpenAI is locking down parts of ChatGPT to reduce data theft risks 2026-06-08 at 13:09 By Anamarija Pogorelec OpenAI has started rolling out Lockdown Mode for ChatGPT, an optional security setting that restricts access to external resources and several product capabilities. It is available for personal accounts, including Free, Go, Plus, and Pro plans, as

OpenAI is locking down parts of ChatGPT to reduce data theft risks Read More »

Scroll to Top