Posts

High-signal AI/security/automation notes.

Filter: All Security / AI CVEs / Research (76)Tool Comparisons (2)Security / AI CVEs / Research (62)Security / AI CVEs / Research (221)

Microsoft: runtime inspection to block risky AI agent tool calls

2026-01-30 Security

Microsoft — CVE-2026-21509 (Office) emergency out-of-band fix

2026-01-30 AI CVEs

Microsoft — turning threat reports into detection insights with AI

2026-01-30 Security

n8n: sandbox escape bugs lead to full RCE in self-hosted instances

2026-01-30 Security

NIST/CAISI — RFI on security practices for AI agents

2026-01-30 Security

OpenAI — Hardening ChatGPT Atlas against prompt injection

2026-01-30 Security

GitHub Advisory — Orval MCP generation code injection risk (CVE-2026-22785)

2026-01-30 AI CVEs

arXiv: SoK on prompt injection attacks against agentic coding assistants

2026-01-30 Research

Varonis — Reprompt: single-click Copilot prompt injection chain for silent data exfiltration

2026-01-30 Security

Varonis — Reprompt one-click Copilot session hijack (patched)

2026-01-30 Security

GitHub Advisory — vLLM model-load RCE risk via auto_map (CVE-2026-22807)

2026-01-30 AI CVEs

GitHub/NVD: vm2 sandbox escape (CVE-2026-22709) enables host code execution

2026-01-30 AI CVEs

Best AI automation tools for non-technical teams (Zapier vs Make vs n8n)

2026-01-29 Tool Comparisons

AI Email Triage Workflow (labels, summaries, suggested replies)

2026-01-29 Security

AI-related CVEs: a practical tracker and triage workflow

2026-01-29 AI CVEs

AI security news digest: what to watch this week

2026-01-29 Security

Zapier + ChatGPT: 5 real workflows (step-by-step)

2026-01-29 Tool Comparisons

CISA/NSA/FBI — Deploying AI systems securely (joint guidance)

2025-06-03 Security

Google — SAIF (Secure AI Framework): a practitioner’s map

2025-05-12 Security

OWASP — Top 10 for LLM Apps: what to fix first

2025-04-18 Security