Advertisement
Claude Code Indirect Prompt Injection: Hijacking Developer Machines
Researchers demonstrate a new attack method leveraging indirect prompt injection in Claude Code, enabling the hijack of developer machines via malicious code in
Agentic AI Identity Problem: New Attack Surface for Enterprises
Agentic AI systems pose novel identity and access management challenges, creating new attack vectors for data exfiltration and privilege escalation.
LLM Prompt Injection: Role Confusion Exposes Core Architectural Flaws
An in-depth analysis of LLM prompt injection, detailing how 'role confusion' in model representations undermines tag-based security and demands architectural solutions.
AI Security Platform Runlayer Raises $30M Series A Funding
Runlayer secures $30 million in Series A funding to develop its secure control layer platform, aiming to fortify AI tools across enterprise environments.
Microsoft AutoGen Studio RCE via AutoJack Flaw — Patch Now
Microsoft patched the AutoJack vulnerability chain in AutoGen Studio, enabling remote code execution through malicious AI agent manipulation.

DifyTap Flaws Expose AI Chats in Dify Platform Without Auth
Zafran Security details DifyTap, a set of four vulnerabilities in Dify, allowing unauthenticated access to cross-tenant AI chat data. Learn impact and mitigation.
AI Agents: The Emerging Identity & Governance Challenge
Unmanaged AI agents pose significant security risks by operating as uncontrolled identities with access to sensitive enterprise systems. Learn mitigation strategies.
Securing AI Under Executive Order 14409: Mandates & Mitigations
Analyze US Executive Order 14409's impact on AI security. Learn federal mandates, NIST AI RMF implementation, and critical infrastructure protection.
Emerging AI Security: Detecting Malicious Agentic Behaviors
Tenet Security emerges, focusing on real-time detection of dangerous AI agentic behavior. Explore the implications and proactive defense strategies for AI systems.

Microsoft Copilot 'SearchLeak' Attack: AI Prompt Injection Data Theft
Analysis of the critical Microsoft Copilot 'SearchLeak' attack. Learn how prompt injection allowed 1-click data theft and crucial defense strategies for AI applications.
NewCore Secures $66M for AI and Machine Identity Platform
NewCore emerges from stealth with $66 million to develop a security-first identity platform protecting human, machine, and AI agent access.
Tackling AI-Driven Code Sprawl: CISO Strategies for Shadow Tooling
Explore how CISOs are confronting the security challenges of AI-driven code sprawl, shadow tooling, and governance gaps in enterprise environments.