As AI becomes more prevalent, concerns about security vulnerabilities, misuse, and ethical implications are growing. This includes issues like malware distribution through AI assistants, prompt injection attacks, bias in AI systems, and the potential for AI to be used for malicious purposes.
A 1Password researcher discovered that a top-downloaded OpenClaw skill was actually a staged malware delivery chain. The skill, promising Twitter integration, guided users to run obfuscated commands that installed macOS malware capable of stealing cr...
A New York federal judge terminated a case due to a lawyer's repeated misuse of AI. The filings contained fake citations and an overly elaborate writing style, with out-of-place references to ancient libraries and Ray Bradbury's Fahrenheit 451. Reque...
A recent article explores the ever-evolving challenges in cybersecurity, with a particular focus on mobile forensics. The article highlights how authorities are facing increasing difficulties in accessing protected devices, citing the example of a Wa...
The Department of Homeland Security’s (DHS) Inspector General has launched an investigation into Immigration and Customs Enforcement (ICE) regarding potential privacy abuses related to surveillance and biometric data programs. The investigation aims ...
A British supermarket apologized after its facial recognition system mistakenly identified an innocent customer as a criminal. The system worked as intended, but staff ejected the wrong person. The company has promised further training for its staff.
OpenAI introduces Trusted Access for Cyber, a trust-based framework that expands access to frontier cyber capabilities while strengthening safeguards against misuse. The initiative aims to balance innovation with responsibility in the cybersecurity f...
A new report indicates that AI-powered bots already account for a meaningful share of web traffic. An increasingly sophisticated arms race is unfolding, as bots deploy clever tactics to bypass website defenses meant to keep them out.
DeFi platform Step Finance suffered a $40 million breach. Hackers compromised executives' devices to gain illicit access to funds. The attack highlights the importance of device security in the crypto and DeFi space.
Microsoft researchers have unveiled a scanning method to identify poisoned AI models with backdoors, even without knowing the specific trigger or the attack's ultimate goal. The method exploits the tendency of these models to memorize training data a...
Samsung is strengthening cybersecurity measures in its semiconductor supply chain to prevent leaks of sensitive technological information. The initiative aims to protect intellectual property and trade secrets in the chip industry.
Large language models (LLMs) face complex security threats, such as sleeper-agent backdoors. These hard-to-detect attacks compromise the integrity and security of the models, opening up sci-fi-like scenarios.
Researchers demonstrated how an AI-powered intrusion system was able to gain administrative privileges on an AWS cloud environment in under 10 minutes, automating several phases of the attack.
Despite Gartner's warnings about the cybersecurity risks associated with the OpenClaw AI assistant, several cloud platforms have started offering it as a service. The decision raises questions about prioritizing speed of deployment over data security...
Applications used to report sightings of ICE (Immigration and Customs Enforcement) agents have been targeted by hackers. Attackers sent threatening messages to users, claiming to have compromised their data and shared it with authorities. While there...
A photo booth company, Curator Live, has exposed a large cache of customers’ photos, often showing them in compromising situations. A security researcher flagged the issue, highlighting the privacy risks associated with data collection even at privat...
A new platform of AI agents sharing instructions via prompts could replicate the history of the Morris worm. A programming error could lead to uncontrolled spread, with potentially serious consequences for connected systems. The similarity to the 198...
The Notepad++ project disclosed a supply chain attack starting in June 2025, involving the hijacking of its update server. Chinese state-sponsored hackers are suspected.
OpenClaw, an AI-powered personal assistant that users interact with via messaging apps, has prompted a wave of malware and is delivering some shocking bills. Its architecture raises serious concerns about user data and credential security.
A researcher discovered a prompt injection payload on Moltbook designed to drain funds from cryptocurrency wallets. The payload, disguised as a technical guide, exploits vulnerabilities in AI agents that process social feeds. The attack highlights th...
Nonprofits urge the U.S. government to suspend Grok in federal agencies. This follows the xAI chatbot generating thousands of nonconsensual sexual images, raising national security and child safety concerns.
Researchers have disclosed a rapid exploit chain that let attackers run code via a single malicious web page. Multiple projects are patching bot takeover and remote code execution (RCE) exploits within the OpenClaw ecosystem, formerly known as ClawdB...
A former Google engineer has been convicted in San Francisco for stealing confidential AI infrastructure data to benefit Chinese interests. He had been trying to raise funding for his own start-up.
Security researchers are warning that the growing ecosystem around ‘OpenClaw,’ the self-hosted AI assistant formerly known as Clawdbot, has already become a target for malware distribution. Fourteen malicious skills were uploaded to ClawHub last mont...
A vulnerability in the Moltbook database allowed anyone to take control of the AI agents on the platform. The incident raises serious concerns about security and access management in systems that orchestrate the execution of large language models.
A security vulnerability in Moltbook, a social media platform for AI agents, exposed APIs, allowing anyone to take control of the agents and post content on their behalf. The vulnerability, discovered by a researcher, stemmed from a misconfiguration ...
An informant claims Jeffrey Epstein had a personal hacker. In cybersecurity news, an AI agent named OpenClaw is causing concern among experts. China has executed 11 people involved in scam compounds. A $40 million crypto theft has an unexpected alleg...
