The Hacker News

How to Protect Your SaaS from Bot Attacks with SafeLine WAF

SafeLine self-hosted WAF blocks SaaS bot abuse with 99.45% accuracy, cutting fake sign-ups and stabilizing CPU usage.
VentureBeat

Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for

Run a prompt injection attack against Claude Opus 4.6 in a constrained coding environment, and it fails every time, 0% success rate across 200 attempts, no safeguards needed. Move that same attack to ...
IEEE

Trident: Detecting SQL Injection Attacks via Abstract Syntax Tree-based Neural Network

Abstract: SQL injection attacks have posed a significant threat to web applications for decades. They obfuscate malicious codes into natural SQL statements so as to steal sensitive data, making them ...
GitHub

SQL Injection in JSON/RichText Queries on PostgreSQL/SQLite Adapters

This score calculates overall vulnerability severity from 0 to 10 and is based on the Common Vulnerability Scoring System (CVSS). Attack vector: More severe the more the remote (logically and ...
Ars Technica

The rise of Moltbook suggests viral AI prompts may be the next big security threat

On November 2, 1988, graduate student Robert Morris released a self-replicating program into the early Internet. Within 24 hours, the Morris worm had infected roughly 10 percent of all connected ...
Infosecurity-magazine.com

SQL Injection Flaw Affects 40,000 WordPress Sites

More than 40,000 WordPress sites using the Quiz and Survey Master plugin have been affected by a SQL injection vulnerability that allowed authenticated users to interfere with database queries. The ...
TechRepublic

How ‘Reprompt’ Attack Let Hackers Steal Data From Microsoft Copilot

How ‘Reprompt’ Attack Let Hackers Steal Data From Microsoft Copilot Your email has been sent For months, we’ve treated AI assistants like Microsoft Copilot as our digital confidants, tools that help ...
CoinTelegraph

Why wrench attacks are becoming one of the most violent forms of crypto crimes

In January 2025, French authorities freed Ledger co-founder David Balland after kidnappers demanded a large ransom in cryptocurrency. The case illustrated what crypto crime can look like when it ...
IEEE

A Hybrid Deep Learning Model for SQL Injection Attack Detection

Abstract: An increasing number of web application services raises significant security concerns. Online access to these applications exposes them to multiple cyberattacks. The Open Web Application ...
Ars Technica

A single click mounted a covert, multistage attack against Copilot

Microsoft has fixed a vulnerability in its Copilot AI assistant that allowed hackers to pluck a host of sensitive user data with a single click on a legitimate URL. The hackers in this case were white ...
Dark Reading

ChatGPT's Memory Feature Supercharges Prompt Injection

Some of the latest, best features of ChatGPT can be twisted to make indirect prompt injection (IPI) attacks more severe than they ever were before. That's according to researchers from Radware, who ...