HHS

How Prompt Injection Attacks Undermine AI Guardrails

Large language models are inherently vulnerable to prompt injection attacks, and no amount of hardening will ever fully close that gap. The imbalance between available attacks and available ...
TechRepublic

Researchers Uncover New Phishing Risk Hidden Inside Microsoft Copilot

AI assistants are rapidly becoming a core part of workplace productivity, but new research suggests they may also introduce a previously overlooked phishing vector. Permiso researchers found that ...
Bleeping Computer

SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites

An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without ...
Forbes

Microsoft Confirms SQL Zero-Day Security Vulnerability—Here’s The Fix

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. The Microsoft Security Response Center has confirmed that a SQL Server elevation of ...
eWeek

OpenAI Introduces New Safeguards in ChatGPT to Prevent AI Prompt Injection

In this episode of eSpeaks, Jennifer Margles, Director of Product Management at BMC Software, discusses the transition from traditional job scheduling to the era of the autonomous enterprise. eSpeaks’ ...
VentureBeat

Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for

Run a prompt injection attack against Claude Opus 4.6 in a constrained coding environment, and it fails every time, 0% success rate across 200 attempts, no safeguards needed. Move that same attack to ...
Ars Technica

The rise of Moltbook suggests viral AI prompts may be the next big security threat

On November 2, 1988, graduate student Robert Morris released a self-replicating program into the early Internet. Within 24 hours, the Morris worm had infected roughly 10 percent of all connected ...
Infosecurity-magazine.com

SQL Injection Flaw Affects 40,000 WordPress Sites

More than 40,000 WordPress sites using the Quiz and Survey Master plugin have been affected by a SQL injection vulnerability that allowed authenticated users to interfere with database queries. The ...
Mashable

Researchers say they convinced Gemini to leak Google Calendar data (updated)

Google's Gemini AI assistant can be coerced into sharing private user data, according to researchers. Credit: Mateusz Slodkowski/SOPA Images/LightRocket via Getty Images UPDATE: Jan. 22, 2026, 12:06 p ...
SiliconANGLE

Indirect prompt injection in Google Gemini enabled unauthorized access to meeting data

A new report out today from cybersecurity company Miggo Security Ltd. details a now-mitigated vulnerability in Google LLC’s artificial intelligence ecosystem that allowed for a natural-language prompt ...
Network World

F5 tackles AI security with new platform extensions

F5's Guardrails blocks prompts that attempt jailbreaks or injection attacks, and its AI Red Team automates vulnerability discovery in AI systems. Network and security teams managing enterprise ...
TechRepublic

How ‘Reprompt’ Attack Let Hackers Steal Data From Microsoft Copilot

How ‘Reprompt’ Attack Let Hackers Steal Data From Microsoft Copilot Your email has been sent For months, we’ve treated AI assistants like Microsoft Copilot as our digital confidants, tools that help ...