Communications of the ACM

Safe Coding

Safe coding is a collection of software design practices and patterns that allow for cost-effectively achieving a high degree ...
Cyber Defense Magazine

How Hackers Are Manipulating AI Agents Right Under Your Nose

When Anthropic launched the Model Context Protocol (MCP) in 2024, the idea was simple but powerful – a universal “USB-C” for ...
Security Boulevard

Common ecommerce security vulnerabilities and testing strategies

Ecommerce platforms represent one of the most consistently targeted areas of the modern digital estate. They process payment ...
LBC

China-linked hackers targeting UK infrastructure within days of vulnerabilities being exposed, threat report warns

For example, one China-linked group exploited a SQL injection vulnerability six days after proof-of-concept code was ...

Understanding the Foundation: How LLMs Process Your Input

First of four parts Before we can understand how attackers exploit large language models, we need to understand how these models work. This first article in our four-part series on prompt injections ...
The Hacker News

How to Protect Your SaaS from Bot Attacks with SafeLine WAF

SafeLine self-hosted WAF blocks SaaS bot abuse with 99.45% accuracy, cutting fake sign-ups and stabilizing CPU usage.

Microsoft Thwarts AI Prompt Injection Attacks Aimed To Manipulate AI Engines

Microsoft has implemented and continues to deploy mitigations against prompt injection attacks in Copilot, the company announced last week. Spammers were using the "Summarize with AI" type of buttons ...
The Hacker News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.
VentureBeat

Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for

Run a prompt injection attack against Claude Opus 4.6 in a constrained coding environment, and it fails every time, 0% success rate across 200 attempts, no safeguards needed. Move that same attack to ...
InfoWorld

19 large language models for safety or danger

These new models are specially trained to recognize when an LLM is potentially going off the rails. If they don’t like how an interaction is going, they have the power to stop it. Of course, every ...