SecurityWeek

OpenClaw Vulnerability Allowed Websites to Hijack AI Agents

An OpenClaw vulnerability allowed malicious websites to take over AI agents, exposing sensitive information and enabling data ...
Nigerian CommunicationWeek

Kaspersky Discovers New Phishing Campaign Exploiting Google Tasks Notifications to Steal Corporate Credentials

Kindly share this postKaspersky has uncovered a new phishing scheme that abuses legitimate Google Tasks notifications to ...
The Hacker News

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

While the Windows maker did not attribute the activity to a specific threat actor, the use of VS Code tasks and Vercel ...
New York Magazine

The AI-Powered Hacking Spree Is Here

A hacker exploited Anthropic PBC’s artificial intelligence chatbot to carry out a series of attacks against Mexican ...

Inside the story of the US defense contractor who leaked hacking tools to Russia

The former boss of a U.S. hacking tools maker was jailed for selling highly sensitive software exploits to a Russian broker.

AI helps novice threat actor compromise FortiGate devices in dozens of countries

Generative AI tools analyzed target networks and wrote exploit code, enabling an opportunistic attacker to have an outsized ...
CSO Online

Russian group uses AI to exploit weakly-protected Fortinet firewalls, says Amazon

The report warns CSOs that while AI is helping unsophisticated threat actors, failure to implement cybersecurity basics is fatal regardless of the attacker's skill.

Single character in AI-generated script wipes developer’s entire hard drive

The user had asked for a simple PowerShell script to remove Python pycache folders. Instead, the script ended up deleting the contents of the user’s F: drive, including project files and Docker data.
The Hacker News

AI-Assisted Threat Actor Compromises 600+ FortiGate Devices in 55 Countries

AI-augmented actor breached 600+ FortiGate devices in 55 countries using weak credentials and exposed ports, Amazon reports.

ActiveState Unifies 79M Components to Launch World's Largest Secure Open Source Catalog

The ActiveState catalog grew to 40 million components in mid 2025 when it introduced coverage for Java and R in addition to Python, Perl, Ruby, and Tcl. As of January 2026, the company has expanded ...

Why LLMs are plateauing – and what that means for software security

AI coding assistants and agentic workflows represent the future of software development and will continue to evolve at a rapid pace. But while LLMs have become adept at generating functionally correct ...