Advertisement
OpenClaw AI Agent Flaws: Prompt Injection and Data Exfiltration Risk
CNCERT warns of critical security flaws in OpenClaw AI agents, enabling prompt injection and data exfiltration due to weak default configurations.
Google VRP 2025: $17.1 Million Paid for Security Vulnerabilities
Google's Vulnerability Reward Program paid a record $17.1 million in 2025, highlighting critical security research trends in Android, Chrome, and AI systems.
OpenAI Codex Security: Scanning 1.2 Million Commits for Vulnerabilities
OpenAI's Codex Security identifies over 10,000 high-severity vulnerabilities across 1.2 million commits using AI-driven detection and automated remediation.
EC-Council Launches AI Certification Suite to Secure Enterprise AI
EC-Council expands its portfolio with four new AI certifications and CCISO v4 to address critical workforce gaps in AI security and governance.
OpenClaw Hijacking Vulnerability: How Malicious Sites Control AI Agents
A critical vulnerability in the OpenClaw AI gateway allows malicious websites to hijack local AI agents via WebSocket connections and password brute-forcing.
LLM-Assisted Deanonymization: Scaling Automated Identity Discovery
New research highlights how LLM agents automate the deanonymization of anonymous online posts across Reddit and Hacker News with high precision and scale.
Mitigating Identity Risks in Autonomous AI Agent Workflows
Enterprise security must evolve to manage AI agents as non-human identities (NHIs) by implementing intent-based controls and solving over-scoped privilege risks.
AI-Driven Package Hallucination: A New Frontier in Supply Chain Exploitation
Analysis of a novel attack vector where autonomous AI agents facilitate malicious package injection through dependency confusion and LLM hallucinations.