Security News - ipban.one

Machine learning code and neural network representing AI model format vulnerabilities

Vulnerabilities 2026-01-15 22 views

Remote Code Execution in Modern AI/ML Formats and Libraries

Unit42 discloses RCE vulnerabilities in NVIDIA NeMo, Salesforce, and FlexTok AI libraries through unsafe model configuration deserialization.

Read more →

Code on computer screen representing Claude Code vulnerability research

Vulnerabilities 2026-01-15 21 views

Pwning Claude Code: Researchers Discover Eight Attack Vectors

Flatt Security research reveals eight attack vectors against Claude Code CLI, demonstrating prompt injection and command execution vulnerabilities.

Read more →

AI robot hand reaching towards human hand representing agentic AI security risks

Threat Intelligence 2026-01-15 17 views

OWASP Agentic AI Top 10: Critical Threats Emerge in the Wild

Lares Labs analysis reveals OWASP Agentic AI Top 10 threats are actively exploited in the wild, from goal hijacking to cascading multi-agent failures.

Read more →

Map and territory concept representing AI agent tool trust boundary analysis

Cybersecurity 2026-01-15 15 views

The Map Is Not the Territory: Understanding Agent Tool Trust Boundaries

Niyikiza research explores AI agent tool trust boundary gaps where tool descriptions diverge from actual capabilities, creating exploitable security vulnerabilities.

Read more →

Computer screen showing malware warning representing IBM AI Bob vulnerability

Vulnerabilities 2026-01-15 23 views

IBM AI Agent Bob Manipulated to Download and Execute Malware

PromptArmor researchers demonstrate IBM AI coding agent Bob can be manipulated to download and execute malware through prompt injection vulnerabilities.

Read more →

Cryptocurrency mining rig representing GoBruteforcer crypto-focused malware campaigns

Malware 2026-01-15 12 views

Inside GoBruteforcer: AI-Generated Server Defaults Power Crypto Campaigns

Check Point exposes GoBruteforcer malware using AI-generated credential lists to compromise servers for cryptocurrency mining operations.

Read more →

Business team meeting discussing AI project security requirements

Cybersecurity 2026-01-15 15 views

The First Question Security Teams Should Ask on AI Projects

Cloud Security Alliance identifies the critical first question for AI project security: mapping data access and action capabilities before deployment.

Read more →

Server room with red warning lights representing critical ServiceNow vulnerability

Vulnerabilities 2026-01-15 12 views

BodySnatcher: Critical ServiceNow AI Vulnerability Enables Platform Takeover

Critical BodySnatcher vulnerability CVE-2025-12420 in ServiceNow AI enables unauthenticated platform takeover through hardcoded credentials and broken authentication.

Read more →

Software developer reviewing code for security vulnerabilities from AI coding agents

Vulnerabilities 2026-01-15 17 views

Bad Vibes: Security Flaws Plague Popular AI Coding Agents

Tenzai study finds 72 vulnerabilities in code from AI agents including Cursor, Claude Code, and Codex. Business logic flaws dominate despite SQL/XSS prevention.

Read more →

Digital poison bottle icon representing AI tool poisoning attack vector

Threat Intelligence 2026-01-15 20 views

AI Tool Poisoning: Hidden Instructions Threaten Autonomous Agents

CrowdStrike reveals AI Tool Poisoning attacks that inject hidden instructions into data sources, manipulating autonomous AI agent behavior.

Read more →