LiteLLM, the proxy that manages your AI API keys, has a pre-auth SQL injection. CVSS 9.8. On CISA KEV. Exploited 36 hours after disclosure. Every API key it stores is compromised.
Ask ChatGPT to summarize a webpage and it might phish you. An attacker can embed invisible instructions in any page that hijack how ChatGPT renders the summary. Your IP leaks. Fake login links appear. Welcome to 2026.
An attacker exploited a Marimo notebook, let an LLM agent do the post-exploitation, and it dumped an entire PostgreSQL database in 4 pivots. This is the first documented LLM-agent intrusion in the wild.
A single slash in the HTTP Host header bypasses authentication on FastAPI, vLLM, MCP servers, and basically every Python AI service. 325 million downloads per week affected.
380,000 AI-built apps deployed with zero security review. 45% of AI-generated code has OWASP Top 10 vulnerabilities. An AI social network leaked its entire database in 3 days. But sure, ship it.
Three CVEs. CVSS 10.0. The Node.js sandbox library used by AI agents, online code runners, and plugin engines can be escaped with a WebAssembly trick. The sandbox was never safe.
Deepfake voice calls, AI-written phishing with perfect grammar, chatbot-powered social engineering. The scams just got a lot harder to spot. Here's how we train for them.
An infostealer at a third-party AI company led to Vercel customer secrets being exposed. The attack chain: AI tool employee gets malware, attacker pivots to Vercel, customer API keys and DB credentials decrypted. Two months undetected.