InfoWorld

Open WebUI bug turns the ‘free model’ into an enterprise backdoor

The bug allows attacker-controlled model servers to inject code, steal session tokens, and, in some cases, escalate to remote ...
Cybernews

Python-based VVS Stealer sneaks off with your Discord data

According to a report from Palo Alto Networks Unit 42, the malware is advertised on Telegram as the “ultimate stealer” and ...

Are Copilot prompt injection flaws vulnerabilities or AI limits?

Microsoft has pushed back against claims that multiple prompt injection and sandbox-related issues raised by a security ...
Dagens.com on MSN

The five AI security threats that moved from theory to reality in 2025

Artificial intelligence promised a leap in productivity this year, particularly as agentic systems began creeping into ...