Microsoft warns CTOs of seven new attack patterns on AI agents: from natural language injections through goal hijacking to visual attacks on computer-use agents.
ATG systems at gas stations and industrial facilities are threatened by authentication vulnerabilities and injection attacks, requiring immediate measures for isolation and hardening.
AI-based adaptive malware could circumvent traditional security measures through independent environment adaptation and vulnerability discovery, potentially attacking enterprise environments within a year.
An IBM whistleblower testifies to years of cover-up of cyberattacks on US federal infrastructure by IBM and AT&T to secure government contracts, including APT-10 attacks with compromised systems in 20 countries.
An unpatched zero-day in VS Code/github.dev enables theft of GitHub OAuth tokens via manipulated links, providing access to all private repositories of a victim.