DNS flaw in Amazon Bedrock and critical AI vulnerabilities expose data and enable RCE, risking breaches and infrastructure ...

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

During an investigation into exposed OpenWebUI servers, the Cybernews research team identified a malicious campaign targeting vulnerable OpenWebUI servers with cryptocurrency miners and Info Stealers.

An N-day vulnerability in Microsoft Word exposes nearly 14 million assets. Attackers can exploit this flaw to bypass security prompts, enabling deployment of malware and establishing persistent access ...

QR codes are widely used in entry and exit systems for various events to monitor the number of participants and ensure that ...

安全审计一查，512 个漏洞，其中 8 个是「严重」级别。更离谱的是，有人发现互联网上有超过 2 万个 OpenClaw 实例直接暴露在公网上，API 密钥、OAuth token 全都裸奔。

Microsoft has released its March 2026 Patch Tuesday, fixing 84 vulnerabilities including two zero-days, 8 critical CVEs, and an AI-discovered CVSS 9.8 RCE flaw.

Infosecurity spoke to several experts to explore what CISOs should do to contain the viral AI agent tool’s security vulnerabilities ...