News

The Hacker News23h
GitLab Duo Vulnerability Enabled Attackers to Hijack AI Responses with Hidden Prompts
Indirect prompt injection in GitLab Duo exposed private source code and inserted malicious HTML into AI responses, risking ...
Pixee Raises $15M to Automate Code Security to Meet the Velocity of GenAI-Enabled Developers
Pixee, the creator of innovative solutions that empower security teams to match the productivity of AI-powered development, announced today that it has raised $15M in seed funding. The round was led ...
Chinese hackers breach US local governments using Cityworks zero-day
Chinese-speaking hackers have exploited a now-patched Trimble Cityworks zero-day to breach multiple local governing bodies ...
CSO Online1d
Prompt injection flaws in GitLab Duo highlights risks in AI assistants
Researchers managed to trick GitLab’s AI-powered coding assistant to display malicious content to users and leak private source code by injecting hidden prompts in code comments, commit messages and ...
Unpatched critical bugs in Versa Concerto lead to auth bypass, RCE
Critical vulnerabilities in Versa Concerto that are still unpatched could allow remote attackers to bypass authentication and execute arbitrary code on affected systems.
The Shib Daily2d
Web3 Security: How to Safeguard Your Data and Digital Assets
Welcome to Web3 security —your guide to the new internet where you control your data and digital assets, no middlemen or big ...
Microsoft2d
Lumma Stealer: Breaking down the delivery techniques and capabilities of a prolific infostealer
Microsoft Threat Intelligence observed the persistent growth and operational sophistication of Lumma Stealer, an ...
GitHub Copilot’s New AI Coding Agent Saves Developers Time – And Requires Their Oversight
GitHub has launched a powerful AI coding agent in Copilot that writes code, fixes bugs, and opens pull requests.
CSO Online2d
GitHub package limit put law firm in security bind
A cautionary tale of how a developer tool limit case could derail cybersecurity protections if not for quick thinking, public ...
CRN2d
Microsoft Build 2025: CEO Nadella Takes Platform, Systems Approach To The ‘Agentic Web’
Microsoft CEO Satya Nadella said that the artificial intelligence platform shift is “getting into the middle innings” and ...
Github Empowers Developers With Autonomous AI Coding Assistant
GitHub has unveiled a significant upgrade to its Copilot platform: an AI-powered coding agent capable of autonomously writing ...