ChatGPT falls to new data pilfering attack as a vicious cycle in AI continues

There’s a well-worn pattern in the development of AI chatbots. Researchers discover a vulnerability and exploit it to do ...

Cisco warns of Identity Service Engine flaw with exploit code

Cisco has patched an ISE vulnerability with public proof-of-concept exploit code that can be abused by attackers with admin ...
TechCrunch

OpenAI says AI browsers may always be vulnerable to prompt injection attacks

Even as OpenAI works to harden its Atlas AI browser against cyberattacks, the company admits that prompt injections, a type of attack that manipulates AI agents to follow malicious instructions often ...
IEEE

Using ChatGPT in Designing Web Applications Resistant to SQL Injection Attacks

Abstract: This paper investigates leveraging ChatGPT as a tool for testing web applications resilient to SQL injection attacks. Subsequently, the web application analysis is conducted using different ...
Infosecurity-magazine.com

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

Security researchers at Sysdig have observed new campaigns exploiting React2Shell which appear to have the hallmarks of North Korean hackers. React2Shell is a remote code execution vulnerability in ...
Dark Reading

Exploitation Activity Ramps Up Against React2Shell

Less than a week after its public disclosure, a maximum severity vulnerability known as React2Shell has been increasingly exploited by opportunistic threat actors. CVE-2025-55182 is a critical remote ...
National Catholic Register

AI and Exploitation: Experts Warn Big Tech Fuels Global Human Trafficking

Technology platforms have become the primary vector through which predators and traffickers exploit victims, and the scope of the problem of child exploitation online is almost unfathomable. John ...
41 NBC News

Forsyth man gets life in prison in dark web child exploitation case

MONTICELLO, Georgia (41NBC/WMGT) – A Forsyth man who prosecutors say used the dark web to target a child has been sentenced to life in prison after pleading guilty Tuesday in Jasper County. According ...
CBS News

Facebook, Instagram users say accounts were wrongfully suspended for "child exploitation"

A Pennsylvania small business owner says she's losing money after being locked out of her social media accounts. Monica Montone, who owns her own gym in Doylestown, Bucks County, said Meta suspended ...
Infosecurity-magazine.com

Claude Desktop Extensions Vulnerable to Web-Based Prompt Injection

Researchers at Koi Security have found that three of Anthropic’s official extensions for Claude Desktop were vulnerable to prompt injection. The vulnerabilities, reported through Anthropic's HackerOne ...
Ars Technica

Claude Code gets a web version—but it’s the new sandboxing that really matters

Anthropic has added web and mobile interfaces for Claude Code, its immensely popular command-line interface (CLI) agentic AI coding tool. The web interface appears to be well-baked at launch, but the ...