The Hacker News

New "LeakyLooker" Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries

Nine “LeakyLooker” flaws in Google Looker Studio allowed cross-tenant SQL access across GCP services before being patched.
The Hacker News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.
GitHub

exploit-intel/eip-mcp

An MCP (Model Context Protocol) server that gives AI assistants access to the Exploit Intelligence Platform — 370K+ vulnerabilities and 105K+ exploits from NVD, CISA KEV, EPSS, ExploitDB, Metasploit, ...
IEEE

Evaluating Large Language Models Versus Traditional Tools in OS Command Injection Exploit Generation

Abstract: The advancement of AI and machine learning has led to significant innovation, with generative AI and Large Language Models (LLMs) transforming academia, corporations, and cybersecurity.
IEEE

DaMiT-SQL: Detecting and Mitigating Text-to-SQL Prompt Injection Attacks

Abstract: Large Language Models (LLMs) are known for their ability to understand and respond to human instructions/prompts. As such, LLMs can be used to produce natural language interfaces for ...