A new report reveals that AI agents can autonomously execute ransomware attacks, evidenced by the case of JADEPUFFER, which ...
AI coding assistants can speed up bounded tasks, but research shows security and review risks rise in complex codebases.
VS Code 1.26 prevents automatic code execution for new project folders, lets users configure whether code can be executed ...
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
I’ve received one of AMD’s first official AI developer boxes for testing, and it’s an impressive piece of AI hardware with a ...
JadePuffer exploited a vulnerable Langflow server, harvested credentials, moved laterally, and encrypted more than 1,300 ...
Zscaler found attackers using SEO poisoning and hidden prompts in malicious websites to manipulate AI agents into making cryptocurrency payments.
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
A rising YouTube channel is making "playable games" for YouTube, and its Mario Kart interactive video is a conceptually ...
Researchers at Sysdig say an AI agent called JADEPUFFER carried out a fully autonomous ransomware attack in just 31 seconds, exploiting a Langflow CVE-2025-3248 flaw, adapting to failed exploits in ...
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.