Zero Trust Authorization for Multi-Agent Systems: When AI Agents Call Other AI Agents
A big paradigm shift happening in AI security right now: We've made significant progress securing single-agent systems—authentication, authorization, credential...
A
Security Flaw in WordPress Plugin Puts 400,000 Websites at Risk
Image: Adobe A vulnerability in a widely used WordPress accessibility plugin could allow attackers to steal sensitive data from affected...
Iran-Linked Hacktivists Hit Stryker, Knocking Employees Offline Across Multiple Countries
Image: przemekklos/Envato A cyberattack has disrupted global operations at medical technology manufacturer Stryker, forcing employees in multiple countries offline and...
Microsoft Authenticator could leak login codes—update your app now
A vulnerability in Microsoft Authenticator for both iOS and Android (CVE-2026-26123) could leak your one-time sign-in codes or authentication...
Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker
A hacktivist group with links to Iran’s intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a...
Fake Gemini AI Chatbot Promotes ‘Google Coin’ in New Crypto Scam
Image: Malwarebytes A convincing chatbot pretending to be Google’s AI assistant is now being used to pitch a fake cryptocurrency...
LexisNexis Hack Exposes 3.9M Records Through Unpatched React Vulnerability
Image: BleepingComputer A simple unpatched bug has led to a major breach, exposing millions of LexisNexis records. According to BleepingComputer,...
The Circus at CISA Continues
A few weeks ago, I wrote that CISA looked like it was on life support. A few days later,...
Perplexity AI Browser Flaw Could Let Calendar Invites Access Local Files
Image: Perplexity A security flaw in Perplexity’s AI-powered Comet browser could have allowed attackers to access files on a user’s...
Chrome Extension Hijacked to Deliver Malware, Steal Crypto Wallets
Image: madedee/Adobe A once-trusted Chrome extension with thousands of users was quietly transformed into a malware delivery vehicle, exposing how...
Fake Zoom meeting “update” silently installs surveillance software
A fake Zoom meeting website is silently pushing surveillance software onto Windows machines. Visitors land on a convincing imitation...
Refund scam impersonates Avast to harvest credit card details
A fraudulent website dressed in Avast’s brand is tricking French-speaking users into handing over their full credit card details—card...
Fake Huorong security site infects users with ValleyRAT
A convincing lookalike of the popular Huorong Security antivirus has been used to deliver ValleyRAT, a sophisticated Remote Access...
AI Agents Are Quietly Redefining Enterprise Security Risk
Image: GoldenDayz/Envato A new social network called Moltbook launched in late January with a premise that should unsettle every CISO...
Figure Data Breach Exposes Nearly 1 Million Customers Online
Generated with Google Gemini A data vault cracked open, and nearly a million digital identities spilled into the wild. This...
