Microsoft

Securing AI agents: When AI tools move from reading to acting

MCP tool poisoning turns trusted AI agents into a control plane for data loss. Learn how threat actors manipulate tool ...

North Korea-Linked macOS Malware Uses Prompt Injection to Evade AI Analysis

SentinelOne says macOS.Gaslight uses prompt injection to mislead AI-based malware analysis, steal data, and use Telegram for ...

Prompt injection is exploiting enterprise AI's biggest design flaws by targeting agents, RAG pipelines and model routers

In 2025 and 2026, several independent sources have highlighted the same trend: Prompt injection remains one of the most ...
ET CIO

Top 10 Application Security Tools for Enterprises in 2026

Explore the leading application security tools of 2026 designed for enterprises. Understand their features, pricing models, and integration guidance for Indian and APAC businesses to enhance cyber ...
IEEE

CID4IoT: IoT-Oriented Command Injection Vulnerability Detection Based on Critical Code Extraction and LLM Analysis

Abstract: The Internet of Things (IoT) devices have brought invaluable convenience to our daily lives. However, they also introduce significant security challenges. Common vulnerabilities in numerous ...
latesthackingnews.com

Reverse Shell Explained: Setup, Attack Chain, and Detection

A reverse shell makes the target machine initiate the connection back to the attacker, bypassing firewalls that only filter ...
IEEE

A Systematic Literature Review of Prompt Injection Attacks in LLM-Integrated Systems

Abstract: Prompt injection exploits a fundamental property of large language models: the inability to distinguish trusted instructions from untrusted content when both are processed as natural ...
LinkedIn

AI Cybersecurity Isn’t Just Prompt Injection Anymore

Since the rise of LLM, AI security discussions have been stuck on the same problem: prompt injection. You know the idea. A user types something like “ignore previous instructions” and tries to make a ...
SecurityWeek

Critical Vulnerabilities Patched in Fortinet, Ivanti Products

Fortinet and Ivanti on Tuesday rolled out fixes for multiple vulnerabilities in their products, including critical-severity OS command injection flaws. Fortinet published three advisories describing ...
The Hacker News

LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity flaw impacting BerriAI LiteLLM to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of ...
Infosecurity-magazine.com

Infosecurity Europe: Prompt Injection Remains Unsolved, OWASP Researcher Warns

Prompt injection remains an unsolved architectural problem that could hamper the development of AI, said Ariel Fogel, a contributor to the Open Worldwide Application Security Project (OWASP), during ...
TechCrunch

OpenAI unveils Lockdown Mode to protect sensitive data from prompt injection attacks

OpenAI announced a new feature that it says will provide additional protection from prompt injection attacks, where malicious chatbot instructions are hidden in web pages and other content sources.