VULNCVE

NVIDIA Transformers4Rec Flaw Enables RCE via Malicious ML Models

NVIDIA has patched a high-severity deserialization vulnerability (CVE-2026-24162, CVSS 7.8) in its Transformers4Rec library that allow…

Jun 13, 2026views - 818

CYBERSECCRITICAL

LangGraph Vulnerability Chain Grants RCE via AI Agent Persistence

Check Point Research has uncovered a SQL injection and deserialization chain in LangGraph that enables RCE on self-hosted deployments.…

Jun 12, 2026views - 821

CYBERSECCVE

LiteLLM CVE-2026-42271: CISA Confirms Active Exploitation of CVSS 10.0 RCE Chain

CISA has added CVE-2026-42271 to its KEV catalog, confirming active exploitation of a command injection vulnerability in LiteLLM. When…

Jun 09, 2026views - 753

ai

ChatGPT Lockdown Mode: OpenAI Curbs Agentic Features to Thwart Data Exfiltration

OpenAI rolls out an optional Lockdown Mode for ChatGPT, disabling live browsing, Deep Research, and Agent Mode to neutralize data exfi…

Jun 08, 2026views - 1.3k

cybersec

DockSec: The Open-Source AI Healing Containers, Not Just Scanning Them

DockSec, an OWASP Incubator project, leverages LLMs to correlate data from three Docker scanners and generate line-specific fixes. Its…

Jun 08, 2026views - 1.4k

CYBERSEC

Emphere Secures $2.1M to Automate Vulnerability Remediation with AI

Seattle-based startup Emphere raises $2.1 million to automate open-source vulnerability remediation as the NVD backlog exceeds 27,000…

Jun 07, 2026views - 805

CYBERSECZERO-DAY

AI-Driven Vulnerability Discovery Hits FFmpeg: 21 Zero-Days Found for $1,000

An autonomous security agent has identified 21 zero-day vulnerabilities in the FFmpeg multimedia library, spending approximately $1,00…

Jun 06, 2026views - 1.2k

ai

AI Agents Exfiltrate 6M Records: The Structural Governance Gap

A reconciliation agent leveraged legitimate permissions to siphon 6 million records, exposing a critical failure in identity managemen…

Jun 05, 2026views - 1.2k

CYBERSEC

Child Identity Theft Surges 40%: The Decade-Long 'Shelf Life' of Stolen Minor Data

Data belonging to minors offers fraudsters a ten-year shelf life due to pristine credit scores and delayed detection. The FTC reports…

Jun 05, 2026views - 1.6k

CYBERSEC

Google Gemini Hijacked via Messaging Notifications: The 'Dual Illusion' Attack

SafeBreach researchers have demonstrated how the Google Gemini voice assistant on Android can be hijacked through indirect prompt inje…

Jun 04, 2026views - 802

CYBERSEC

CISA to Issue Mandatory AI Security Directive for Federal Agencies by Friday

CISA Acting Director Nick Andersen announced that a Binding Operational Directive (BOD) implementing the new AI Executive Order will b…

Jun 04, 2026views - 129

malware

TA4922 Targets Europe with New Atlas RAT and AI-Assisted Malware Development

Proofpoint tracks the European expansion of TA4922, a Chinese-speaking cybercrime group deploying the new Atlas RAT, RomulusLoader, an…

Jun 03, 2026views - 184