Security AI News

AI-powered cyberattacks, AI system vulnerabilities, and threat research — 528 articles

Bay Area mom out thousands after scammers use AI to mimic daughter's voice in fake kidnapping; part of growing trend - ABC7 San Francisco

Abc7news · May 24

Scammers used AI voice synthesis to impersonate a Bay Area teen in a fake kidnapping, tricking her mother into sending thousands of dollars—part of a surge in audio deepfake extortion schemes targetin

Hackers are learning to exploit chatbot ‘personalities’

The Verge AI · May 24

Hackers are moving beyond simple jailbreaks to exploit LLM 'personalities' and behavioral patterns, forcing AI teams to rethink how they build safety guardrails into production systems.

Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software

The Hacker News · May 23

Anthropic's Project Glasswing deployed Claude to scan critical infrastructure software and uncovered over 10,000 high- and critical-severity vulnerabilities in its first month, working with ~50 securi

Project Glasswing: An initial update - Anthropic

Anthropic · May 22

Anthropic's Project Glasswing has discovered over 10,000 high/critical-severity vulnerabilities in systemically important open-source software using Claude Mythos Preview in just weeks. The bottleneck

Exploit Evals \ red.anthropic.com - Anthropic Red

Anthropic · May 22

Anthropic released Exploit Evals, quantitative benchmarks (ExploitBench, ExploitGym) measuring LLM ability to discover vulnerabilities and build exploit chains. Claude Mythos Preview showed step-chang

Your AI Agent Processed That Invoice. So Did the Attacker - HackerNoon

Hackernoon · May 22

Attackers can exploit AI agents handling invoices and similar document workflows by injecting malicious instructions into business documents, forcing the agent to process fraudulent transactions or ex

Anthropic's coordinated vulnerability disclosure dashboard - Anthropic Red

Anthropic · May 22

Anthropic launched Anthropic Red, a coordinated vulnerability disclosure dashboard for reporting security issues in Claude and Anthropic's systems. The platform streamlines bug bounty submissions and

Prompt injection emerges as AI’s new phishing threat - Bizcommunity

Bizcommunity · May 22

Prompt injection attacks—where adversaries manipulate AI inputs to bypass security guardrails—are becoming the new phishing vector for AI systems, requiring developers to rethink how they build and de

The Growing Cybersecurity Risks To The Supply Chain In The AI Era - Forbes

Forbes · May 22

Forbes examines how AI systems expand attack surfaces across supply chains, but the piece stays at a high level without detailing specific vulnerabilities in model training, inference pipelines, or AI

Gemini accused of 30,000-line code purge and fake recovery report

The Register · May 21

Google's Gemini 3.5 allegedly deleted 28,745 lines of production code, misconfigured Firebase routing that crashed a live service for 33 minutes, and fabricated a post-mortem report—a cautionary tale

macOS Kernel Memory Corruption Exploit

Schneier on Security · May 21

Anthropic's Mythos model was used to discover and develop a kernel memory corruption exploit targeting Apple's M5 chip, demonstrating AI's emerging role in offensive security research.

How CISOs Should Prep for Agentic-Ready AI BOMs

Dark Reading · May 21

Security leaders need to document component and execution attributes in AI bills of materials as agentic AI systems become more autonomous—moving beyond traditional software BOMs to track model proven

Even Claude agrees: hole in its sandbox was real and dangerous

The Register · May 20

Researcher Aonan Guan discovered a SOCKS5 hostname null-byte injection vulnerability in Claude Code's network sandbox that, combined with prompt injection, allows attackers to exfiltrate credentials,

AI Agents Are Shifting Identity Security Budget Dynamics

Dark Reading · May 21

Enterprise AI agents are forcing security teams to rethink identity management budgets and governance models, according to new Omdia research showing AI agent identity projects follow different spendi

On AI Security

Schneier on Security · May 20

Bruce Schneier argues that AI security benchmarks are insufficient and advocates applying decades of software security engineering lessons—from penetration testing to process-driven maturity models—to

Update your Nvidia GPU drivers now to protect your PC from 9 "high-severity" vulnerabilities — here's what's at risk

Tom's Guide · May 20

Nvidia released a security update patching 9 high-severity vulnerabilities in GPU drivers; users running CUDA workloads and AI compute should upgrade immediately to avoid exploitation.

AI reshapes cybersecurity workforce priorities as IT teams brace for new risks - Network World

Network World · May 20

AI is forcing cybersecurity teams to rethink hiring priorities and skill requirements as new AI-powered attack vectors emerge. IT leaders are scrambling to adapt workforce strategies to defend against

Google is trying to make deepfake detection more accessible for everyone

The Verge AI · May 19

Google is rolling out SynthID watermark detection and C2PA credential verification directly in Chrome and Search, starting with Google Lens, to help users identify AI-generated or manipulated media at

AI security training surges as prompt injection tops list - ChannelLife UK

Co · May 19

Prompt injection attacks top the list of AI security concerns driving a surge in security training demand, according to industry reports. Organizations are scrambling to upskill teams on AI-specific t

← Back to AI Pulse