Until last month, attackers could've stolen info from Perplexity Comet users just by sending a calendar invite

AI browsing agent left local files open for the taking If you wanted to steal local files from someone using Perplexity's ...

Google stuffs Gemini into Android Studio Panda 2 to build apps from prompts

The card game bridge could be a bridge too far for Mountain View's AI Google has released Android Studio Panda 2, a feature ...

Former Republic staffer describes life in UAE during air strikes

Life in Abu Dhabi has been nerve-racking since the U.S. and Israel launched joint airstrikes against Iran on Feb. 28.
CPO Magazine

Security Research Finds OpenClaw AI Agent “Trivially Vulnerable” to Hijacking

The Oasis researchers document a vulnerability chain that can be initiated from any website the AI agent (or its user) visits ...

Accessible Math Comes to PDF: PDF 2.0 enables fully-accessible STEM content

For years, mathematical content on the web has been made accessible through MathML. In contrast, math in PDF files was typically reduced to unstructured alternative text—insufficient for braille math ...
SecurityWeek

Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant

A Chrome vulnerability allowed malicious extensions to hijack the browser’s Gemini Live assistant to spy on users and exfiltrate data.
InfoWorld

The browser is your database: Local-first comes of age

The thick client is making a comeback. Here’s how next-generation local databases like PGlite and RxDB are bringing ...

Princess Polly plans opening at this Central Florida mall

The Gen Z fashion retailer, Princess Polly, plans to open in August at The Mall at Millenia, which has added multiple brands ...

ClawJacked attack let malicious websites hijack OpenClaw to steal data

Security researchers have disclosed a high-severity vulnerability dubbed "ClawJacked" in the popular AI agent OpenClaw that allowed a malicious website to silently bruteforce access to a locally ...
SecurityWeek

OpenClaw Vulnerability Allowed Websites to Hijack AI Agents

An OpenClaw vulnerability allowed malicious websites to take over AI agents, exposing sensitive information and enabling data theft.
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...
Dark Reading

Critical OpenClaw Vulnerability Exposes AI Agent Risks

The now-patched flaw is the latest in a growing string of security issues with the viral AI tool, which has seen rapid adoption among developers.