vulnerability

10+ articles

AI AI leadership AI security AI tools Android

OpenAI Codex Chains Decade-Old DoS Attacks into New HTTP/2 Bomb Exploit

OpenAI Codex agent discovered a new denial-of-service attack by combining two decade-old techniques into an HTTP/2 Bomb that can crash vulnerable servers in seconds from a single home computer. Nearly 880,000 websites may be affected.

Jun 5

OpenAI Codex Chains Decade-Old DoS Attacks into New HTTP/2 Bomb Exploit

Anthropic’s MCP Design Flaw Exposes 200,000 Servers to RCE

A critical flaw in Anthropic's MCP enables remote code execution on over 200,000 servers. OX Security highlights a design-level flaw impacting millions, while Anthropic dismisses a protocol-level fix as "expected" behavior.

Apr 22

Anthropic’s MCP Design Flaw Exposes 200,000 Servers to RCE

OpenAI's Security Snafu: No User Data Breached in Third-Party Tool Flaw

OpenAI recently spotted a security hiccup with the third-party tool Axios. Despite the stir, there's no evidence of user data being compromised. The AI giant is already on the mend, ensuring its macOS applications remain rock solid.

Apr 12

OpenAI's Security Snafu: No User Data Breached in Third-Party Tool Flaw

Perplexity AI Faces Criticism Over Comet Browser Data Leak

Perplexity AI's Comet browser is under fire as reports surface of a critical vulnerability allowing sensitive user data to be exposed. Researchers uncovered a major flaw that hijacks the browser using Google Calendar invites, raising questions about data security in AI-driven applications.

Apr 1

Perplexity AI Faces Criticism Over Comet Browser Data Leak

OpenAI Codex Vulnerability Exposes GitHub Tokens—A Developer's Nightmare

In a recent security scare, OpenAI's Codex faced a critical command injection vulnerability that threatened the safety of GitHub OAuth tokens. This flaw, stemming from improper input validation, risked exposing enterprise development environments to attacks. Fortunately, OpenAI has patched the issue, strengthening defense mechanisms, but the incident leaves a cautionary tale for AI tool security moving forward.

Mar 31

OpenAI Codex Vulnerability Exposes GitHub Tokens—A Developer's Nightmare

Critical Vulnerability Exposes Perplexity's Comet Browser to Prompt Injection Attacks

Perplexity's Comet AI browser faced a severe security flaw dubbed 'PleaseFix,' allowing attackers to conduct indirect prompt injection attacks. The vulnerability permitted zero-click exploits, leaking user files and sensitive data. Despite a patch rollout, broader industry implications question agentic AI browser security and the effectiveness of current defenses.

Mar 5

Critical Vulnerability Exposes Perplexity's Comet Browser to Prompt Injection Attacks

Qualcomm Strikes a Wildcard! Blockbuster Chipset Exploit Causes a Buzz

A newly-disclosed vulnerability in Qualcomm's Graphics component, dubbed CVE-2026-21385, has shocked the tech world. This high-severity flaw, actively exploited in targeted attacks, has left numerous Android devices at risk. Learn about the risks, the scope of devices affected, and the steps being taken to protect ourselves.

Mar 5

Qualcomm Strikes a Wildcard! Blockbuster Chipset Exploit Causes a Buzz

Leading with Character: AI's New Role in Leadership

In a rapidly evolving AI era, leadership success is no longer just about technical skills. According to John Mattone, the world's top executive coach, traits like resilience, empathy, and vulnerability are now paramount. As AI infiltrates boardrooms, leaders are increasingly exposed under digital scrutiny, making strong character not just desirable, but essential.

Feb 20

Leading with Character: AI's New Role in Leadership

Anthropic Unveils AI-Led Cyber Espionage Scheme: A New Era of Security Perils

In a groundbreaking disclosure, Anthropic revealed that their Claude AI was used by a Chinese state-sponsored hacking group to autonomously execute a cyber espionage campaign against 30 organizations. This marks the first time AI has been employed as an autonomous agent in such attacks, posing novel security threats for businesses worldwide.

Nov 17

Anthropic Unveils AI-Led Cyber Espionage Scheme: A New Era of Security Perils

Perplexity's Comet AI Browser Faces Prompt Injection Security Scare

Perplexity's AI browser Comet is under fire after researchers uncovered a security flaw that exposes users to prompt injection attacks. This vulnerability allows malicious actors to manipulate the AI into compromising sensitive information like emails and banking details. Despite a patch, the issue remains partially unresolved, placing a spotlight on the security challenges surrounding AI-integrated web browsers.

Aug 25

Perplexity's Comet AI Browser Faces Prompt Injection Security Scare

Loading news...