Not a very smart home: crims could hijack smart-home boiler, open and close powered windows and more. Now fixed ...

Researchers from Zenity have found multiple ways to inject rogue prompts into agents from mainstream vendors to extract ...

A prompt injection attack using calendar invites can be used for real-world effects, like turning off lights, opening window ...

A new theoretical attack described by researchers with LayerX lays out how frighteningly simple it would be for a malicious or compromised browser extension to intercept user chats with LLMs and ...

Security researchers found a weakness in OpenAI’s Connectors, which let you hook up ChatGPT to other services, that allowed ...

ChatGPT can now connect to third-party services, and researchers have determined that those connections open the door to ...

Google fixed a bug that allowed maliciously crafted Google Calendar invites to remotely take over Gemini agents running on ...

Critical flaw in Cursor AI editor let attackers execute remote code via Slack and GitHub—fixed in v1.3 update.

For likely the first time ever, security researchers have shown how AI can be hacked to create real world havoc, allowing them to turn off lights, open smart shutters, and more.

By infecting a calendar invite with instructions for Google's Gemini AI, hackers were able to take over a stranger's smart ...

Critical flaw in new tool could allow attackers to steal data at will from developers working with untrusted repositories.

Attackers could exploit widely deployed AI technologies for data theft and manipulation, experts from Zenity Labs found.