Hackers can hijack ChatGPT, Claude, and Gemini with nothing but a sentence. OpenAI says the problem may never be fully solved.

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers ClickFix attack flows. The campaign was ...

AI systems inherit decades-old security flaws many organizations still fail to address consistently.

Administrators of the Drupal open source content management platform are rushing to install an emergency patch issued today to fix a “highly critical” SQL injection vulnerability in the application’s ...

GitHub Copilot security scanning arrives in the terminal with /security-review, an experimental pre-commit slash command that ...

Welcome to Saturday Hashtag, a weekly place for broader context. Saturday Hashtag: #AIPoisonPill originally appeared on ...

As AI becomes the public face of business, organizations must validate performance, security, and cost efficiency at scale.

Security researchers have developed a new image-based prompt injection attack that can manipulate how multimodal AI systems interpret user instructions without modifying the original text prompt, ...

The reported cyberattacks on CBSE’s re-evaluation portal have reignited questions about the security of India’s digital ...

AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.