CSO Online

Hackers exploit a critical Flowise flaw affecting thousands of AI workflows

The design flaw in Flowise’s Custom MCP node has allowed attackers to execute arbitrary JavaScript through unvalidated ...
The Caledonian-Record

Viz.ai Ranked No. 1 for Second Consecutive Year in 2026 Black Book Survey of Independent AI Clinical Decision Support Solutions

Black Book report finds the market is shifting from stand-alone alerts to enterprise-scale AI platforms that combine ...
SecurityWeek

Critical Flowise Vulnerability in Attacker Crosshairs

Threat actors have started exploiting CVE-2025-59528, a critical Flowise vulnerability leading to remote code execution.

Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...
Developer Tech

Axios npm attack causes JavaScript supply chain chaos

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...
SecurityWeek

Google DeepMind Researchers Map Web Attacks Against AI Agents

Threat actors can use malicious web content to set up AI Agent Traps and manipulate, deceive, and exploit visiting autonomous ...

Project Glasswing aims to secure the world’s software, and Anthropic’s mythology

Anthropic is pitching Project Glasswing as a cybersecurity breakthrough, but the first battle may be getting everyone to believe in the legend of Claude Mythos ...

U.S. PCE inflation picks up in February, seen rising further in March

U.S. inflation increased as expected in February and likely rose further in March amid the war with Iran, a trend that is ...
InfoWorld

Visual Studio Code 1.115 introduces VS Code Agents app

Preview of new companion app allows developers to run multiple agent sessions in parallel across multiple repos and iterate ...

Federal Reserve minutes show growing openness to rate hikes at March meeting

Despite the inflation risks, however, “many participants” still saw rate cuts as part of their baseline outlook, with “most ...
The Hacker News

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

CVE-2025-59528 exploited in Flowise for over six months across 12,000+ exposed instances, enabling full system compromise.

Google’s new Gemma 4 models bring complex reasoning skills to low-power devices

Built on the same architectural foundation as Gemini 3, the models are designed to handle complex reasoning tasks and support ...