Until last month, attackers could've stolen info from Perplexity Comet users just by sending a calendar invite

AI browsing agent left local files open for the taking If you wanted to steal local files from someone using Perplexity's ...
Network World

AI transforms ‘dangling DNS’ into automated data exfiltration pipeline

Generative AI is raising the risk of dangling DNS attack vectors, as the orphaned resources are no longer just a phishing ...

Wikipediaの管理者アカウントが侵害を受けてしまい読み取り専用 ...

オンライン百科事典のWikipediaを含むウィキメディア・プロジェクト全般において、深刻なセキュリティインシデントが2026年3月5日に発生しました。この問題により、ウィキメディア財団の管理者アカウントが侵害され、複数の言語版でページの大量削除や荒 ...
InfoWorld

Angular releases patches for SSR security issues

Server-side rendering vulnerabilities could allow attackers to steal authorization headers or perpetrate phishing and SEO hacking.
WinBuzzer

Chrome Gemini Flaw Let Rogue Extensions Hijack AI Panel

A high-severity Chrome vulnerability has allowed malicious extensions to exploit the Gemini panel and gain elevated access to ...

Bing Adds GEO To Official Guidelines, Expands AI Abuse Definitions

Bing rewrote its webmaster guidelines to cover Copilot grounding, meta directive controls for AI answers, and a softened stance on AI-generated content.
Security Boulevard

N8N: Shared Credentials and Account Takeover

Executive Summary We identified a security weakness in n8n’s credential management layer that could have completely compromised the application’s security. This finding highlights the core risks of ...