Security Boulevard

Bypassing LLM Supervisor Agents Through Indirect Prompt Injection

Indirect prompt injection lets attackers bypass LLM supervisor agents by hiding malicious instructions in profile fields and ...
PharmTech

Hidden Liability: Why Legacy Web Forms Put Life Sciences Organizations at Critical Risk

Legacy web forms used for clinical trial recruitment, adverse event reporting, laboratory data collection, and regulatory ...
CSO Online

April Patch Tuesday roundup: Zero day vulnerabilities and critical bugs

This month’s threat landscape is ‘defined by immediate, real-world exploitation rather than just theoretical vulnerabilities, ...

Microsoft: Third-Party Android Vulnerability Leaves Over 50M Users Exposed

A flaw in the EngageLab SDK exposed 50 million Android users, allowing malicious apps to exploit trusted permissions and ...
SecurityWeek

Apple Intelligence AI Guardrails Bypassed in New Attack

“RSAC estimates that there were at least 200 million Apple Intelligence-capable devices in consumers’ hands as of December ...

Why Application Security Now Shapes Everyday Digital Trust

Learn how protecting software reduces breaches, downtime, and data exposure. Includes common threats like injection, XSS, and ...

From cloud to agentic AI: Why security must evolve faster than innovation

Most organizations did not fail at cloud security because they misunderstood the technology, rather they failed because they tried to secure it afterwards.
Techzine Europe

Is 46% of your AI-generated code vulnerable?

Harness field CTO reveals 46% of AI-generated code contains vulnerabilities. Learn how to secure your SDLC with multi-layered ...

Researchers detail how a prompt injection attack bypassed Apple Intelligence protections

A now corrected issue let researchers circumvent Apple’s restrictions and force the on-device LLM to execute ...
InfoWorld

How Agile practices ensure quality in GenAI-assisted development

AI lets you code at warp speed, but without Agile "safety nets" like pair programming and automated tests, you're just ...
Communications of the ACM

Subscription Bombing: Email under Attack

Email subscription bombing (also known as subscription flooding or email spam bombing) is an attack technique that overwhelms a target’s inbox with a high volume of benign but unwanted emails. The ...

Microsoft Confirms New And Widespread 2FA Code Attacks Ongoing

The Microsoft Defender Security Research Team has confirmed that a pervasive new authentication code attack is compromising ...