The Hacker News

Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution

Antigravity Strict Mode bypass disclosed Jan 7, 2026, patched Feb 28, enables arbitrary code execution via fd -X flag.

Actively exploited Apache ActiveMQ flaw impacts 6,400 servers

Nonprofit security organization Shadowserver found that over 6,400 Apache ActiveMQ servers exposed online are vulnerable to ...
Infosecurity Magazine

Researchers Uncover 10 In-the-Wild Prompt Injection Payloads Targeting AI Agents

Security researchers have discovered 10 new indirect prompt injection (IPI) payloads targeting AI agents with malicious ...
The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture ...
SecurityWeek

Google Antigravity in Crosshairs of Security Researchers, Cybercriminals

Google Antigravity’s increasing popularity has brought the development platform into the crosshairs of researchers and ...
SecurityWeek

Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking

Serial-to-IP converters are affected by potentially serious vulnerabilities that can expose OT and healthcare systems to ...

OpenAI subscribers get new ‘workspace agents’ to automate complex tasks across teams

OpenAI Group PBC said today it’s pushing ChatGPT outside its usual chat interface with the launch of “workspace agents,” ...

The AI governance mirage: Why 72% of enterprises don’t have the control and security they think they do

VentureBeat research finds 72% of enterprises are running multiple "primary" AI platforms with no clear owner — creating ...
Gadget Review on MSNOpinion

Claude desktop is messing with your settings – find out why even uninstalled browsers are affected!

Claude Desktop for macOS secretly installs browser configuration files that pre-authorize Chrome extensions without user ...
Blue Headlineq

Amazon RuleForge Shows What Agentic AI Security Looks Like at Real Scale

Security teams do not just have a vulnerability problem anymore. They have a translation problem. In 2025, the National Vulnerability Database published more than 48,000 new CVEs.

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

How indirect prompt injection attacks on AI work - and 6 ways to shut them down ...

Operant AI Launches CodeInjectionGuard to Defend AI Agents Against Runtime Code Injection Attacks

Operant AI builds runtime security for AI agents, defending autonomous systems at the point of execution where static analysis and pre-deployment scanning cannot reach. Agent Protector provides ...