The Hacker News

Google Gemini Prompt Injection Flaw Exposed Private Calendar Data via Malicious Invites

Researchers found an indirect prompt injection flaw in Google Gemini that bypassed Calendar privacy controls and exposed ...

Why every AI agent is vulnerable to attack

AI agents are rapidly moving from experimental tools to trusted decision-makers inside the enterprise—but security has not ...

The 11 runtime attacks breaking AI security — and how CISOs are stopping them

CrowdStrike's 2025 data shows attackers breach AI systems in 51 seconds. Field CISOs reveal how inference security platforms defend against prompt injection, model extraction, and 9 other runtime ...
IEEE

SQL Injection Detection, Prevention and Deception Using ML Classifiers

Abstract: SQL injection (SQLi) attacks are arguably the most prevalent and destructive security attacks against web applications currently in use. SQLi attacks allow malicious users to exploit input ...
Bleeping Computer

University of Pennsylvania confirms new data breach after Oracle hack

The University of Pennsylvania (Penn) has announced a new data breach after attackers stole documents containing personal information from its Oracle E-Business Suite servers in August. The private ...
Ars Technica

Syntax hacking: Researchers discover sentence structure can bypass AI safety rules

Researchers from MIT, Northeastern University, and Meta recently released a paper suggesting that large language models (LLMs) similar to those that power ChatGPT may sometimes prioritize sentence ...
Bloomberg L.P.

North Korea Suspected of $30 Million Crypto Hack, Yonhap Says

North Korean hacking group Lazarus is suspected of being behind an exploit that saw 45 billion won (about $30 million) drained from South Korea’s largest crypto exchange Upbit on Thursday, Yonhap News ...
The New York Times

A Swath of Bank Customer Data Was Hacked. The F.B.I. Is Investigating.

SitusAMC, a technology vendor for real estate lenders, holds sensitive personal information on the clients of hundreds of its banking customers, including JPMorgan Chase. By Rob Copeland Stacy Cowley ...
CNN

Wall Street banks scramble to assess fallout from hack of real-estate data firm

Hackers stole a trove of data from a company used by major Wall Street banks for real-estate loans and mortgages, setting off a scramble to determine what was taken and which banks were affected, ...
Variety

Seth Rogen Says ‘I Still Don’t Know For Sure’ Who Did the Sony Hack, 11 Years After ‘The Interview’: ‘Probably North Korea, but Maybe With People in America?’

Seth Rogen recently told GQ magazine that after 11 years he is “pretty at peace” with what went down during the release of 2014’s “The Interview.” The comedy, which Rogen co-wrote and starred in ...
Futurism

Serious New Hack Discovered Against OpenAI’s New AI Browser

It didn’t take long for cybersecurity researchers to notice some glaring issues with OpenAI’s recently unveiled AI browser Atlas. The browser, which puts OpenAI’s blockbuster ChatGPT front and center, ...