Researchers have discovered two vulnerabilities in the widely used Cursor AI-enabled integrated development environment (IDE) ...
Two critical Cursor IDE vulnerabilities, dubbed DuneSlide, let prompt injection break the editor's command sandbox with no ...
Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the researchers who discovered the vulnerability and reported it to Microsoft ...
A critical prompt injection vulnerability in GitHub Agentic Workflows could allow unauthenticated attackers to leak private repository data, ...
Ubiquiti has released security updates to patch seven critical vulnerabilities in UniFi OS, including a maximum-severity flaw ...
A prompt injection attack can trick GitHub’s preview Agentic Workflows into retrieving content from private repositories and ...
Microsoft has released a security patch to address a Defender zero-day vulnerability known as "RoguePlanet," disclosed after ...
In 2025 and 2026, several independent sources have highlighted the same trend: Prompt injection remains one of the most ...
Fortinet released three security advisories on the second Tuesday of the month, commonly known as “Patchday” by other vendors. One concerns a critical security vulnerability in FortiSandbox; the other ...
Heckmeck about security vulnerabilities with the highest risk rating in Ivanti's Sentry: CISA, and some IT security companies warn of ongoing attacks. Ivanti downplays it, saying they are just ...
AI chatbots and assistants are extremely vulnerable to exploitation, according to new research. AI chatbots are under attack. Just this week, hackers hacked Instagram by tricking Meta's AI support ...
Hackers are exploiting a critical vulnerability (CVE-2026-48282) in Adobe ColdFusion that carries a CVSS score of 10/10.