SecurityWeek

Ally WordPress Plugin Flaw Exposes Over 200,000 Websites to Attacks

A vulnerability in the Ally WordPress plugin exposes over 200,000 websites to sensitive information disclosure via SQL queries.
The Cincinnati Enquirer

SafePrompt Launches Prompt Injection Protection API for AI Developers

Our goal was to make prompt security as simple as Stripe made payments: one API call, transparent pricing, no sales calls.” — Ian Ho, Founder, SafePrompt SAN ...
HealthcareInfoSecurity

Autonomous Agent Hacked McKinsey's AI in 2 Hours

Security startup CodeWall disclosed this week that its autonomous AI agent breached McKinsey's internal AI platform Lilli in ...
Computer Weekly

Panther AI SOC platform ‘closes loop’ on security Ops

Panther Labs (hereafter just Panther) describes itself as a complete AI security operations centre (SOC) platform that is ...
Security Boulevard

MY TAKE: As RSAC 2026 opens, AI has bifurcated cybersecurity into two wars—the clock is running

RSAC 2026 opens here Monday at Moscone Center, with upwards of 40,000 cybersecurity professionals, executives, and policy ...
PCMag on MSN

Fake apps, fraudulent emails, and very real hackers: Another week in the infosec trenches

This week saw attacks on Claude Code users, LastPass users, Starlink users, and, perhaps worst of all, people who needed an ...
Techish

Co-op Bank security scare exposes a potential crisis across Kenya’s banking websites

A critical web security flaw on Co-operative Bank of Kenya’s website has been exposed, revealing sensitive database ...
The Hacker News

LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks

Three LangChain flaws enable data theft across LLM apps, affecting millions of deployments, exposing secrets and files.