Posts

High-signal AI/security/automation notes.

Anthropic Officially Launches Project Glasswing — $100M Commitment, 12 Partners, Thousands of Zero-Days Found

“Comment and Control” — Prompt Injection Hijacks Claude Code, Gemini CLI & Copilot via GitHub

Comment and Control — Prompt Injection Leaks Secrets in Three AI Coding Agents

Forcepoint X-Labs Finds 10 Indirect Prompt Injection Payloads on Live Websites

LiteLLM PyPI Compromised — Multi-Stage Credential Stealer in 3M-Download Package

Lovable — BOLA Exposes AI Chat Histories and Database Credentials in Vibe Coding Platform

npm CanisterWorm — Self-Spreading Supply-Chain Attack Targets AI Agent Tooling

NVIDIA — Indirect AGENTS.md Injection in OpenAI Codex via Malicious Dependencies

Red Hat RHEL AI — Two InstructLab CVEs: Path Traversal & trust_remote_code RCE

Anthropic MCP Design Flaw Enables RCE Across the AI Ecosystem

Anthropic — Unauthorized Access to Mythos AI Model

Apache ActiveMQ CVE-2026-34197 — Claude Discovers 13-Year-Old RCE in 10 Minutes

Brex — CrabTrap Open-Source LLM-as-a-Judge Proxy for AI Agent Security

CSA Survey — 82% of Enterprises Have Unknown AI Agents in Their Environments

CVE-2026-26144: Excel XSS Chains to Copilot Agent for Silent Data Exfiltration

Posts

LangWatch Scenario — Open-Source Multi-Turn Red-Teaming Framework for AI Agents

OpenClaw — Six CVEs Cover Agentic Consent Bypass, RCE, SSRF, and Authorization Gaps

Paperclip AI — Unauthenticated RCE via Four-Flaw Authorization Chain (CVE-2026-41679)

TeamPCP — Checkmarx KICS Docker and Bitwarden CLI Compromised in Escalating Supply Chain Campaign

Vercel Breach via Context.ai — Third-Party AI Tool OAuth Cascade

Anthropic Officially Launches Project Glasswing — $100M Commitment, 12 Partners, Thousands of Zero-Days Found

“Comment and Control” — Prompt Injection Hijacks Claude Code, Gemini CLI & Copilot via GitHub

Comment and Control — Prompt Injection Leaks Secrets in Three AI Coding Agents

Forcepoint X-Labs Finds 10 Indirect Prompt Injection Payloads on Live Websites

LiteLLM PyPI Compromised — Multi-Stage Credential Stealer in 3M-Download Package

Lovable — BOLA Exposes AI Chat Histories and Database Credentials in Vibe Coding Platform

npm CanisterWorm — Self-Spreading Supply-Chain Attack Targets AI Agent Tooling

NVIDIA — Indirect AGENTS.md Injection in OpenAI Codex via Malicious Dependencies

Red Hat RHEL AI — Two InstructLab CVEs: Path Traversal & trust_remote_code RCE

Anthropic MCP Design Flaw Enables RCE Across the AI Ecosystem

Anthropic — Unauthorized Access to Mythos AI Model

Apache ActiveMQ CVE-2026-34197 — Claude Discovers 13-Year-Old RCE in 10 Minutes

Brex — CrabTrap Open-Source LLM-as-a-Judge Proxy for AI Agent Security

CSA Survey — 82% of Enterprises Have Unknown AI Agents in Their Environments

CVE-2026-26144: Excel XSS Chains to Copilot Agent for Silent Data Exfiltration