security
security
more in this beat
- jun 02securityAfrican Languages Are a Jailbreak Blind Spot for English-Tuned LLM Safety
- jun 02securityPoisoning Open-Source LLM Merges: One Bad Checkpoint Hijacks the Result
- jun 02securityAn Autonomous Research Agent Now Discovers SOTA LLM Jailbreak Attacks
- jun 02securityMalware Can Prompt-Inject the AI Agent Reverse-Engineering It
- jun 02securityCVE-Factory Turns Published CVEs Into Security Agent Training Data. A 32B Model Beats Claude 4.5 Sonnet.
- jun 01securityLLM Reasoning Traces Leak the Private Data They're Told to Hide
- jun 01securityVideo Jailbreaks Hit Multimodal LLMs by Splitting Payloads Across Clips
- may 31securityVercel AI SDK CVE-2025-48985: Input Validation Bypass Hits LLM App Builders
- may 31securityHijacking AI Agent Memory: One Conversation Can Plant a Persistent Trojan
- may 31securityWhy Attack Success Rate Misleads LLM Jailbreak Benchmarks
- may 30securityJob Seekers Are Prompt-Injecting AI Resume Screeners. New Study Measures the Hit Rate
- may 30securityWhy Audio Jailbreaks Slip Past the Safety Training Built for Text LLMs
- may 30securityLoRA Adapter Backdoors Generalize Beyond Their Trigger Tokens
- may 28securityThree Labs Concede Browser Agents Cannot Stop Prompt Injection
- may 28securityVercel Firewall Now Blocks SAMLStorm. Can an Edge WAF Fix a SAML Signature Flaw?
- may 26securityVercel Could Block React2Shell at the Edge. Its Next 13 CVEs Had No Shortcut.
- may 26securityOpenAI Adds a GPT-5 System Card Addendum on Sensitive Conversations
- may 26securityMCP Tool Description Poisoning: New Benchmark Shows Agents Trust Manuals That Lie
- may 26securityOpenAI's New Safety Bug Bounty Pays Researchers for Jailbreaks and Policy Bypasses
- may 26securityAxios npm Compromise Forces Vercel Into Platform-Level Remediation
- may 26securityNext.js Dev Server CVE-2025-48068: Any Web Page Could Read Your Source Files
- may 25securityApple Names Claude in CVE Credit Line, Setting Vendor Attribution Precedent
- may 24securityCISA's Internal Data Leak Tests the Disclosure Standards It Sets for Others
- may 24securityTanStack npm Attack: When OIDC Trusted Publishing Becomes the Attack Vector
- may 24securityNx s1ngularity Attackers Used Local Claude Code and Gemini CLI to Steal Developer Tokens
- may 23securityOpenAI Ships Lockdown Mode and Elevated Risk Labels for ChatGPT Sessions
- may 22securityAI Jailbreaks Are Now a Reasoning Problem, Not a Prompt Problem
- may 22securityJailbreak Defense Now Lives in Model Weights, Not in Prompt Filters
- may 22securityVercel Blocks Deploys With Vulnerable next-mdx-remote by Default: Platform Mitigation Outpaces the CVE Cycle
- may 22securityVercel's Next.js Middleware Bypass Postmortem: What the Fix Reveals About Edge Runtime Auth
- may 22securityOpenAI's New Agent Defense Post Concedes Prompt Injection Is Architectural, Not Patchable
- may 22securityWhen Stronger Backdoor Triggers Backfire: An arXiv Theory Paper Inverts a Core Defense Assumption
- may 17securityDPrivBench: LLMs Score 99.5% on Textbook DP but Collapse on Advanced Reasoning
- may 17securityCatching Graph Neural Net Backdoors by Influence, Not Pattern
- may 17securityTrustFall: One Keypress in Claude Code, Gemini CLI, Cursor, and Copilot CLI Triggers Unsandboxed RCE
- may 17securityMini Shai-Hulud Ships the First Malicious npm With Valid SLSA Provenance
- may 17securityMultiBreak Benchmark: 10,389 Multi-Turn Jailbreak Prompts Raise ASR 54pp on DeepSeek-R1-7B
- may 17securityNext.js CVE-2026-44578: WebSocket Upgrade SSRF Hits 79,000 Self-Hosted Instances From 13.4.13 Onward
- may 17securityPraisonAI CVE-2026-44338: Legacy Flask API Ships With AUTH_ENABLED=False, First Scan in 3h44m
- may 16securityMicrosoft Semantic Kernel Patches Two RCE Paths: eval() in Vector Filter, DownloadFileAsync Escape to Host
- apr 28securityWindsurf CVE-2026-30615 Is the Only Zero-Click in the April MCP RCE Wave: HTML Rewrites the Config
- apr 28securityPaperclip CVE-2026-41208: Agents Can Mutate Their Own provisionCommand Into Server-Side Shell Injection
- apr 28securitySpring AI 1.0.6 Patches Five CVEs Including CVSS 8.8 SQL Injection in CosmosDBVectorStore.doDelete
- apr 28securityLMDeploy CVE-2026-33626: Vision-LLM SSRF Exploited Within 12 Hours of GHSA Publication
- apr 28securityInstructLab CVE-2026-6859: Hardcoded trust_remote_code=True Turns Any HuggingFace Model Into RCE
- apr 28securityPickleScan 1.0.4 Patches a CVSS 10.0 pkgutil.resolve_name Bypass and Six Missing Stdlib RCE Modules
- apr 28securityMercor's 4TB Lapsus$ Breach Hands Voice-Clone Attackers 40,000 Pre-Verified Targets
- apr 27securityVercel's April 2026 Database Leak Pivoted From Lumma Stealer at Context AI via a Chrome Extension
- apr 27securityBitwarden CLI Compromise Extends the Checkmarx Supply-Chain Campaign to Credential Tooling
- apr 23securityFlowise's CVE-2026-41264: LLM-Written `import` Becomes Unauthenticated RCE