Trend Micro — Quasar Linux Implant Targets Developer and DevOps Environments 2026-05-06 Security / AI CVEs / Research
Chrome 148 — On-Device AI Model Installed Silently, Exposed to Any Webpage via Prompt API 2026-05-05 Security / AI CVEs / Research
Computer Use — Vision Agents Cost 45x More Than Structured APIs 2026-05-05 Security / AI CVEs / Research
NVIDIA NemoClaw — Sandbox Environment-Variable Exfiltration and SSRF via Blueprint Config (CVE-2026-24222 / CVE-2026-24231) 2026-05-04 Security / AI CVEs / Research
NVIDIA NVFlare CVE-2026-24178 — Critical Auth Bypass in Federated ML Training 2026-05-04 Security / AI CVEs / Research
Proofpoint 2026 AI and Human Risk Landscape — Half of Orgs Hit by AI Incidents 2026-05-04 Security / AI CVEs / Research
Oasis Security — "Claudy Day" Prompt Injection and Data Exfiltration Chain in Claude.ai 2026-05-03 Security / AI CVEs / Research
Hugging Face LeRobot — CVE-2026-25874 Unauthenticated RCE via Pickle Deserialization 2026-05-03 AI Stack CVEs
OX Security — MCP STDIO Systemic RCE Flaw Affecting 200K AI Agent Servers 2026-05-03 Security / AI CVEs / Research
OpenAI Pushes Frontier AI Models Into Government Cyber Defense 2026-05-03 Security / AI CVEs / Research
PromptMink — North Korean-Linked Supply Chain Attack Uses Claude Opus to Plant Malware 2026-05-03 Security / AI CVEs / Research
Sunwood-ai-labs MCP Server — CVE-2026-7593 OS Command Injection 2026-05-03 Security / AI CVEs / Research
arXiv: Comparative Evaluation of AI Agent Security Guardrails 2026-05-02 Security / AI CVEs / Research
ArXiv — Indirect Prompt Injection in the Wild: 15.3K Instances Across 24.8M Hosts 2026-05-02 Security / AI CVEs / Research
Microsoft — Frontier AI Accelerates Vuln Discovery, Calls for Faster Patching & Responsible Release 2026-05-02 Security / AI CVEs / Research