SecurityWeek

Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant

A Chrome vulnerability allowed malicious extensions to hijack the browser’s Gemini Live assistant to spy on users and exfiltrate data.

Anthropic’s AI Hacked the Firefox Browser. It Found a Lot of Bugs.

New AI-powered tools are increasingly adept at spotting flaws. Hacking experts worry they will be good at exploiting them, too.

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.

City Detect, which uses AI to help cities stay safe and clean, raises $13M Series A

City Detect, a company that helps local governments prevent urban decay, is in at least 17 cities so far, including Dallas and Miami.

Endor Labs launches free tool AURI after study finds only 10% of AI-generated code is secure

Endor Labs launches AURI, a free security platform that embeds directly into AI coding assistants like Cursor and Claude to ...

Cursor is rolling out a new kind of agentic coding tool

Called Automations, the new system gives users a way to automatically launch agents within their coding environment, triggered by a new addition to the codebase, a Slack message, or a simple timer.
Microsoft

Malicious AI Assistant Extensions Harvest LLM Chat Histories

Malicious AI browser extensions collected LLM chat histories and browsing data from platforms such as ChatGPT and DeepSeek.