SecurityWeek

SAP Patches Critical FS-QUO, NetWeaver Vulnerabilities

SAP released 15 new security notes on its March 2026 Security Patch Day, including two that resolve critical vulnerabilities ...

AI vs AI: Agent hacked McKinsey's chatbot and gained full read-write access in just two hours

Researchers at red-team security startup CodeWall say their AI agent hacked McKinsey's internal AI platform and gained full read and write access to the chatbot in just two hours. It's yet another ...
Dark Reading

Cisco Drops 48 New Firewall Vulnerabilities, 2 Critical

Edge bugs are so fetch, and Cisco just patched 50 new ones, including some heavy hitters with 10 out of 10 scores on the CVSS scale.
VentureBeat

Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for

Run a prompt injection attack against Claude Opus 4.6 in a constrained coding environment, and it fails every time, 0% success rate across 200 attempts, no safeguards needed. Move that same attack to ...
SecurityWeek

Security Analysis of Moltbook Agent Network: Bot-to-Bot Prompt Injection and Data Leaks

Cybersecurity firms have analyzed the AI agent social network Moltbook and found a vulnerability exposing sensitive data, as well as malicious activity conducted by the bots. Moltbook emerged ...
Forbes

Moltbot Gets Another New Name, OpenClaw, And Triggers Security Fears And Scams

Forbes contributors publish independent expert analyses and insights. Ron Schmelzer covers AI and data best practices at Forbes since 2018 This voice experience is generated by AI. Learn more. This ...
Fox Business

China bans dozen US and Israeli cybersecurity firms over national security concerns: report

Chinese authorities have reportedly instructed domestic companies to halt the use of cybersecurity software from over a dozen U.S. and Israeli firms, citing national security concerns. Beijing ...
Reuters

Exclusive: Beijing tells Chinese firms to stop using US and Israeli cybersecurity software, sources say

China bans use of software from Palo Alto Networks, CrowdStrike, and several others, sources say Alphabet's Mandiant, Thales' Imperva, Wiz, SentinelOne, Rapid7 also on cyber blacklist Authorities cite ...
VentureBeat

OpenAI admits prompt injection is here to stay as enterprises lag on defenses

It's refreshing when a leading AI company states the obvious. In a detailed post on hardening ChatGPT Atlas against prompt injection, OpenAI acknowledged what security practitioners have known for ...
TechCrunch

OpenAI says AI browsers may always be vulnerable to prompt injection attacks

Even as OpenAI works to harden its Atlas AI browser against cyberattacks, the company admits that prompt injections, a type of attack that manipulates AI agents to follow malicious instructions often ...
IEEE

Optimized Detection of SQL Injection Attacks Using Machine Learning: Enhancing Accuracy and Explainability in Cybersecurity

This paper tests the efficiency of some machine learning approaches to identify SQL injection attacks by considering precision and interpretability. A combination of the popular models like XGBoost, ...