From late April 2026 to mid-June 2026, Microsoft Defender Experts observed increased ACR Stealer activity across customer ...
Threat actors compromised AsyncAPI packages and weaponized trusted CI/CD workflows to distribute malware through npm. This ...
A threat actor has published hundreds of fake GitHub repositories impersonating legitimate software and security projects to ...
To understand how to defend the modern enterprise, it’s necessary to identify the three primary forces affecting the threat ...
Discover how the Rogue Agent vulnerability in Google Dialogflow CX enabled persistent AI agent compromise, data exfiltration, ...
Ethereum gossipsub vulnerability CVE-2026-34219 lets any unauthenticated peer crash a validator with a single crafted PRUNE ...
This is the official code for the ICLR 2025 paper Agent Security Bench (ASB): Formalizing and Benchmarking Attacks and Defenses in LLM-based Agents. The Agent Security Bench (ASB) aims to ...