The new “agentjacking” attack takes almost no real hacking ability to pull off. It's predicated on pulling a public ...

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...

Microsoft details AutoJack exploit chain targeting AutoGen Studio MCP WebSocket in pre-release builds, enabling ...

IntroductionOn May 14, 2026, the Zscaler ThreatLabz team identified unusually high activity associated with the threat actor SmartApeSG to deploy malware. During our examination, we discovered ...

Three popular plugins served malicious JavaScript through a compromised CDN.

This is probably the dictionary illustration for "deceptively simple." ...

Chrome's WebMCP guidance warns that AI agents can be manipulated through the tools they are built to trust.

Tenet Security researchers reveal how new “agentjacking” attacks could trick coding agents into executing arbitrary code ...

One person was killed in an attack on the international airport in Kuwait, local authorities said, as Iran continues to target U.S. allies in the Persian Gulf. By Vivian Nereim Reporting from Riyadh, ...

Russia used a powerful hypersonic missile to carry out a massive attack Sunday in Kyiv, which killed at least two people, Ukrainian President Volodymyr Zelenskyy said. The Oreshnik ballistic missile ...

Security researchers have developed a new image-based prompt injection attack that can manipulate how multimodal AI systems interpret user instructions without modifying the original text prompt, ...

EDITOR’S NOTE: This report contains details of sexual assault and violence. Hamas militants and their allies raped, assaulted and sexually tortured their victims ...