2026-06-20
- Splunk AI Toolkit OS Command Injection via btool Configuration Helper (CVSS 9.1)Vulnerability
- PraisonAI MultiAgentLedger Duplicate Agent ID Information Disclosure (CVSS 6.5)Vulnerability
- PraisonAI MultiAgentMonitor Path Traversal — Arbitrary File Read/Write via Agent IDs (CVSS 8.8)Vulnerability
- PraisonAI AGUI Endpoint Unauthenticated Cross-Origin Agent Execution (CVSS 8.1)Vulnerability
- PraisonAI Hardcoded approval_mode:auto Allows Authenticated Users to Execute Arbitrary Shell Commands (CVSS 8.8)Vulnerability
- An Evaluation of Data Leakage Risks in Tool-Using LLM Agents in Realistic ScenariosStrategic Report
- AI Scenarios 2030: Helping Policymakers Plan for the Future of AIStrategic Report
- Singapore Minister Urges ASEAN AI Adoption While Warning Against Restrictive Data Sovereignty PoliciesRegulatory
- US Commerce Dept. American AI Exports Program — First Call for Proposals (Deadline 30 June 2026)Regulatory
- White House–Anthropic Negotiate AI Model Security Flaw Assessment Framework (18 June 2026)Regulatory
- Australia CISC: Enhanced Critical Infrastructure Risk Management Program (CIRMP) Rules 2026 — Mandatory AI Risk Assessment for Critical Infrastructure OperatorsGuidelines
- C1 Enterprise-Managed Authorization (EMA) for MCP — Day-One Support for Anthropic's Open Agent Authorization StandardSolutions
- AutoJack — Novel AI Agent RCE Exploit Chain via Localhost MCP WebSocket (AutoGen Studio, Microsoft Research)Solutions
- Accenture Acquires Majority Stake in Dragos + All of runZero and NetRise — $4.18B OT/Critical Infrastructure Cybersecurity ConsolidationSolutions
- AWS Continuum — AI-Native Agentic Security Platform Launched at AWS Summit New YorkSolutions
2026-06-19
- TypeBot Chatbot Builder — SSRF DNS Rebinding Bypass via TOCTOU Gap (CVE-2026-48764)Vulnerability
- TypeBot Chatbot Builder — Unauthenticated Arbitrary S3 Object Write via Unsanitised fileName (CVE-2026-48768)Vulnerability
- nanobot AI Assistant — WhatsApp Bridge Path Traversal Enables RCE via Unsanitised Filename (CVE-2026-48716)Vulnerability
- Eclipse Theia AI Chat — Markdown Image Tags Enable Prompt-Injection-Driven Data Exfiltration (CVE-2026-22551)Vulnerability
- Eclipse Theia — Workspace Task Definitions Execute Arbitrary Code Without Trust Enforcement (CVE-2026-44691)Vulnerability
- Eclipse Theia AI — Malicious .prompttemplate Files Override AI System Prompts (CVE-2026-46580)Vulnerability
- Eclipse Theia AI Chat — Workspace File/Directory Names Injected Into AI System Prompt (CVE-2026-44688)Vulnerability
- googleapis/mcp-toolbox — Scope Enforcement Bypass in Legacy Protocol Handlers (CVE-2026-11719)Vulnerability
- googleapis/mcp-toolbox — OAuth Opaque Token Introspection Auth Bypass (CVE-2026-11717 & CVE-2026-11718)Vulnerability
- mcp-pinot MCP Server — No Authentication on HTTP Interface Exposes SQL Execution to Any Network Attacker (CVE-2026-49257)Vulnerability
- Splunk Enterprise Unauthenticated PostgreSQL Sidecar RCE — CISA KEV Added June 18, 2026 (CVE-2026-20253)Vulnerability
- LLMjacking Evolved: Exposed Ollama Servers Weaponised as AI Reasoning Engine for Autonomous Offensive FrameworkVulnerability
- Agentjacking: Fake Sentry Error Reports Hijack AI Coding Agents Into Running Attacker-Controlled CodeVulnerability
- State of the Digital Decade 2026: Closing Structural Gaps and Mobilising Investments for 2030 and BeyondStrategic Report
- Agentic Coding and Persistent Returns to ExpertiseStrategic Report
- ADB 2026–2030 Digital Transformation Strategy: $20 Billion Commitment to AI Governance and Cybersecurity in Asia-PacificRegulatory
- GSA Internal Directive CIO 2185.1C: Accelerating Responsible Use of Artificial Intelligence at GSARegulatory
- GSA GSAR Proposed Rule: Basic Safeguarding of Data within LLM AI Systems (GSAR Clause 552.239-7001)Regulatory
- OWASP / Aikido Security: Agentic AI Code Audit Launched as OWASP Individual Member Benefit (18 June 2026)Guidelines
- OWASP Agentic Skills Top 10 (AST10) — First Security Framework for AI Agent Skills PublishedGuidelines
- NCSC Guidance: 'The Vibe Coding Spectrum' — Risk-Calibrated Oversight for AI-Assisted Software DevelopmentGuidelines
- AWS Kiro CLI Applied to Security Incident Response: AI-Guided GuardDuty Investigation WorkflowSolutions
- WitnessAI Agentic Control: Single Control Plane for AI Agent and MCP Server GovernanceSolutions
- Microsoft MDASH: Multi-Model Agentic Vulnerability Scanner Moves from Benchmark to Active Production Use Across Windows, Azure, and IdentitySolutions
- AWS Continuum: Agentic Security Platform for Continuous Vulnerability Discovery, Validation, and Remediation (Gated Preview)Solutions
2026-06-18
- Joomla Content Editor (JCE) Unauthenticated PHP Code Upload and Execution — CISA KEV (CVSS 10.0)Vulnerability
- Starlette 'BadHost' Host-Header Auth Bypass Affects vLLM, FastAPI-Based AI Tools (CVE-2026-48710)Vulnerability
- Shai-Hulud/Hades PyPI Supply-Chain Worm Targets AI/ML Packages with LLM Scanner Evasion and Credential-Wiper DaemonVulnerability
- LiteLLM Low-Privilege → Admin → RCE Privilege Escalation Chain (CVSS 9.9, Obsidian Security)Vulnerability
- LiteLLM MCP Endpoint Command Injection — Unauthenticated RCE via Starlette BadHost Chain (CISA KEV)Vulnerability
- China CSRC Chairman Warns on AI-Driven Stock Speculation, Signals Forthcoming AI Capital-Markets GuidanceRegulatory
- GSA Proposed Rule: GSAR Clause on Data Safeguarding Within Large Language Model AI Systems (Federal Register, 17 June 2026)Regulatory
- NCSC CEO Public Statement: Hostile States Behind Three-Quarters of Cyber Attacks on UK Critical Infrastructure, AI Escalating Threat VelocityGuidelines
- UK House Appropriations Analogue — US FY2027 DHS Bill: Directed Report Requiring CISA + NIST to Publish Agentic AI Identity & Access Management GuidanceGuidelines
- CISA + G7 Joint Guidance: "Software Bill of Materials for AI – Minimum Elements"Guidelines
- SEACEN Policy Brief Issue #3: Governing AI in ASEAN — Priorities for Central BanksStrategic Report
- Verifiable Audit Trails for AI-Enabled Biological Design Tools: A Proposal for Verifiable Biodesign LoggingStrategic Report
- OpenAI Acquires Ona — Secure Persistent Cloud Execution Environments for Long-Running Codex AgentsSolutions
- promptfoo 0.121.16 — Claude Fable & Mythos Red-Team Provider Support + Four Skills Published to Claude Code MarketplaceSolutions
- Sysdig TRT — Evolved LLMjacking: Exposed Ollama Servers Weaponized as AI Reasoning Engine for Autonomous Offensive VAPT PipelineSolutions
- Varonis SearchLeak (CVE-2026-42824) — One-Click Data Exfiltration Chain in Microsoft 365 Copilot Enterprise Search, PatchedSolutions
- Microsoft MDASH — Multi-Model Agentic Vulnerability Detection System Detailed, CyberGym #1 BenchmarkSolutions
- CrowdStrike Continuous Identity for AI Agents — Real-Time, Zero-Standing-Privilege Authorization via SPIFFE (Identiverse 2026)Solutions
- SentinelOne Purple AI Agentic Investigations — Zero-Click Autonomous SOC Opened to All CustomersSolutions
- AWS Continuum — AI-Native Security Agent Family Launched at AWS Summit New York (Preview)Solutions
2026-06-17
- Reasoning-Extension Denial-of-Service Attack Weaponizes AI Agent Guardrails (Novel Attack Class)Vulnerability
- Chatway Live Chat AI Chatbot — Subscriber Sensitive Data Exposure (CVE-2026-49082)Vulnerability
- ChatBot WordPress Plugin — Subscriber Broken Access Control (CVE-2026-40788)Vulnerability
- Royal MCP WordPress Plugin — Unauthenticated Broken Access Control (CVE-2026-40775)Vulnerability
- AI Engine WordPress Plugin — Editor Privilege Escalation (CVE-2026-27407)Vulnerability
- GPTranslate WordPress AI Translation Plugin — Unauthenticated SQL Injection (CVE-2026-49776)Vulnerability
- OpenClaw Slack Reaction Events Bypass Disabled Notification Setting — Unintended Agent Pipeline Triggering (CVE-2026-53851)Vulnerability
- OpenClaw BlueBubbles Sender Policy Bypass via Conversation Metadata (CVE-2026-53860)Vulnerability
- OpenClaw Zalo allowFrom Policy Bypass via Mutable Contact Display Metadata (CVE-2026-53857)Vulnerability
- OpenClaw Discord allowFrom Policy Bypass via Mutable Display Name (CVE-2026-53849)Vulnerability
- OpenClaw MCP Server Leaks Operator Custom Headers to Attacker-Controlled Redirects (CVE-2026-53840)Vulnerability
- Langflow AI Orchestration Platform Path Traversal → Unauthenticated RCE Actively Exploited (CVE-2026-5027)Vulnerability
- LiteLLM Vulnerability Chain — Low-Privilege User to Admin + RCE on AI Gateway (CVE-2026-47101, CVE-2026-47102, CVE-2026-40217)Vulnerability
- NewCore Launches from Stealth with $66M — Security-First Identity Infrastructure for AI AgentsSolutions
- CrowdStrike Continuous Identity for AI Agents: Real-Time Risk-Aware Authorization (SGNL Integration)Solutions
- OpenAI Deployment Simulation: Predict Model Behavior Before Release Using Real Conversation DataSolutions
- promptfoo code-scan-action 0.1.8: GitHub Action Upgraded to Node 24 RuntimeSolutions
- promptfoo 0.121.16: Claude Fable/Mythos Provider Support + Four Red-Team Skills on Claude Code MarketplaceSolutions
- Cloud Security Alliance: '7 MCP Risks CISOs Should Consider and How to Prepare' — Authoritative Practitioner Guidance on Model Context Protocol SecurityGuidelines
- Vietnam Decree 142/2026/ND-CP: First Implementing Regulation Under AI Law — Risk-Based Classification Framework in ForceRegulatory
- EU AI Act: European Parliament Plenary Approves Simplification Measures and Bans 'Nudifier' AI ApplicationsRegulatory
- Trump Signs NSPM-12: Aggressive Timelines to Secure National Security Systems Against AI-Driven ThreatsRegulatory
2026-06-16
- TrueFoundry AI Gateway — Lasso Security Integration for Centralized GenAI ProtectionSolutions
- Microsoft Defender for Office 365 — One Year of Real-World Email Security Benchmarking PublishedSolutions
- ChatBot WordPress Plugin — Subscriber Broken Access Control (CVSS 7.1)Vulnerability
- Chatway Live Chat AI Chatbot — Subscriber Sensitive Data Exposure (CVSS 7.4)Vulnerability
- AI Product Search for WooCommerce (Motive Commerce Search) — Unauthenticated Broken Access Control (CVSS 8.2)Vulnerability
- Royal MCP WordPress Plugin — Unauthenticated Broken Access Control (CVSS 7.3)Vulnerability
- AI Engine WordPress Plugin — Editor-Role Privilege Escalation (CVSS 7.2)Vulnerability
- GPTranslate WordPress Plugin — Unauthenticated SQL Injection via AI Translation Endpoint (CVSS 9.3)Vulnerability
- Spring AI Vector Stores — Special-Character Injection Enables Arbitrary Query Execution in Elasticsearch, OpenSearch, and GemFireVulnerability
- Cursor Editor Executes Malicious Claude Hook Commands from Workspace .claude/settings.local.json Without User ApprovalVulnerability
- South Korea National Court Administration Escalates Response to AI 'Ghost Cases' in Legal ProceedingsRegulatory
2026-06-15
- Results from the First Anthropic Public RecordStrategic Report
- From AGI to ASIStrategic Report
- CISA Binding Operational Directive BOD 26-04: Risk-Based Vulnerability Prioritisation — 3-Day Fix Window for Critical FlawsRegulatory
- Colorado Replaces Original AI Act with SB 26-189 — Revised High-Risk AI Accountability Law, Effective January 1, 2027Regulatory
- New York Synthetic Performer Law Takes Effect — First-in-Nation AI Advertising Disclosure MandateRegulatory
- Canada OPC PIPEDA Findings #2026-004: X Corp. and xAI (Grok) Violated Privacy Law via Deepfake ToolRegulatory
- Canada Bill C-34 (Safe Social Media Act) Introduced — AI Chatbot Safety Duties and Digital Safety CommissionRegulatory
- Multi-State AGs Open Sweeping Investigation into OpenAI — Subpoena Served June 12, 2026Regulatory
- US Commerce Dept. Export Control Directive: Anthropic Fable 5 & Mythos 5 Suspended for All Foreign NationalsRegulatory
- OWASP Dependency-Track 5.0 Generally Available — Enterprise-Scale SBOM Platform with AI/ML Model Inventory and Supply Chain Integrity VerificationGuidelines
- NIST: Mathematical Proof That No Finite AI Guardrail Set Is Universally Robust — Foundational Support for Continuous-Monitor-and-Update Security ModelGuidelines
- SourceCodester CET AI Grading System Reflected XSS via index.php action Parameter (CVE-2026-12176)Vulnerability
- GPTranslate WordPress AI Translation Plugin Stored XSS via REST API (CVE-2026-9109)Vulnerability
- VS Code MCP Server Managed Identity Elevation of Privilege (CVE-2026-40376)Vulnerability
- Langflow AI Platform Path Traversal → Unauthenticated RCE Actively Exploited (CVE-2026-5027)Vulnerability
- Palo Alto Networks Prisma AIRS: Privilege Misuse Detection for AI Agents (June 2026 Release)Solutions
- ZeroFox AI Analytics: Real-Time Threat Pattern Querying Embedded in External Threat PlatformSolutions
- Check Point Extends Workforce AI Security to MSP EcosystemSolutions
- CrowdStrike Falcon for IT: AI Discovery and Governance for Shadow AISolutions
- Netskope AI Gateway Adds Inline MCP Traffic Inspection and Agent GuardrailsSolutions
- OpenAI Acquires Ona — Secure Persistent Cloud Execution for Long-Running Codex AgentsSolutions
- Microsoft AI Activity Investigation Playbook for M365 Copilot and Azure AISolutions
- Google Security Operations: New AI Agent Suite for Threat Detection, Triage, and HuntingSolutions
- Microsoft ASSERT: Open-Source Spec-to-Evals Framework for AI AgentsSolutions
- Linx Security: GA of Agentic Access Control — Inline MCP Gateway with Tool-Level Policy EnforcementSolutions
- Zscaler Launches Industry-First Complete Zero Trust Platform for Agentic AISolutions
2026-06-14
- What Is Blocking U.S. Power Expansion for AI — and What Could Unlock It by 2030?Strategic Report
- Shai-Hulud/Hades Campaign: PyPI Supply-Chain Worm Injects AI Scanner-Evasion Prompts and Backdoors AI Coding Agent ConfigsVulnerability
- ChromaDB Rust IDOR Cross-Tenant Data Access — CVE-2026-8828, CVSS 8.8 HIGH — No Patch ConfirmedVulnerability
- Multistate Attorney General Coalition Subpoenas OpenAI Over ChatGPT User Safety Harms, Concurrent with IPO FilingRegulatory
- US Commerce Department Issues Binding Export Control Directive Forcing Anthropic to Disable Claude Fable 5 and Mythos 5 GloballyRegulatory
2026-06-13
- CVE-2026-50287: AgenticMail MCP Server Exposes Streamable HTTP Transport Without Authentication (CVSS 8.7)Vulnerability
- StakeBench: No Production Web Agent Consistently Blocks Prompt Injection — Direct Attacks Succeed 79%+ Across GPT-5 and Gemini in 3,168 SimulationsVulnerability
- CISA KEV: Oracle PeopleSoft CVE-2026-35273 Actively Exploited by ShinyHunters — 100+ Organisations Breached, Federal Patch Deadline June 15Vulnerability
- LangGraph RCE Chain: SQL Injection + msgpack Deserialization in Stateful Agent Checkpointer (CVE-2025-67644 + CVE-2026-28277)Vulnerability
- Agentjacking: Sentry MCP Integration Weaponised to Execute Arbitrary Code on Developer Machines via Injected Error EventsVulnerability
- GitInject: Multi-University Research Confirms All Major AI CI/CD Providers Vulnerable to Prompt Injection — Eleven Named Attack Classes DocumentedGuidelines
- BlueVoyant Launches AI-Native Agentic SecOps Platform with Autonomous Threat Detection and ContainmentSolutions
2026-06-12
- PRC-linked Influence Operations Are Targeting AI Debates in the US (June 2026 Threat Report)Strategic Report
- The Compute Coalition: How to Build the Future of AI in the Free WorldStrategic Report
- vLLM CVE-2026-5497 — CVSS 7.5 Unauthenticated Denial-of-Service via Unbounded Video Frame Processing in Widely Deployed AI Inference ServerVulnerability
- mcp-server-kubernetes CVE-2026-46519 — CVSS 8.8 Access Control Bypass Via Environment Variable Override in MCP Kubernetes ServerVulnerability
- Ivanti Sentry CVE-2026-10520 — CVSS 10.0 Unauthenticated OS Command Injection Added to CISA KEV, Exploited Within 24 HoursVulnerability
- EU Publishes Code of Practice on Transparency of AI-Generated Content to Support AI Act Article 50 ComplianceRegulatory
2026-06-11
- Shai-Hulud/Miasma Worm Escalates to 100+ npm/PyPI Packages — Persists in Claude Code, VS Code, Gemini CLI Agent Config Files; mistralai & guardrails-ai Confirmed CompromisedVulnerability
- AI and Skills: What We Know So FarStrategic Report
- Policy on the AI Exponential: Advanced AI Framework and Economic Policy FrameworkStrategic Report
- Sound Practices for Responsible Adoption of Artificial Intelligence (AI): Consultation ReportStrategic Report
- CVE-2026-8335 — Aix-DB LLM Endpoint Allows Unauthenticated SQL Query Execution Against the Application DatabaseVulnerability
- CVE-2026-46432 — LMDeploy Hardcoded trust_remote_code=True Enables Arbitrary Code Execution When Loading HuggingFace ModelsVulnerability
- Google Publishes WebMCP Agent Security Guidance — Malicious Manifests and Contaminated Tool Outputs as Primary Attack Vectors with Deterministic and Probabilistic CountermeasuresGuidelines
- Anthropic Publishes Claude Fable 5 and Mythos 5 System Card — Detailed Cyber Capability Evaluation, Dual-Config Safety Architecture, and Agentic Prompt-Injection Benchmark ResultsGuidelines
- Linx Security Launches Agentic Access Control — Inline MCP Gateway with Tool-Level Policy Enforcement and Full Audit LoggingSolutions
- Zscaler Launches AI Access Graph and Zero-Trust Agentic AI Platform at Zenith Live 2026Solutions
- House Appropriations Committee FY2027 DHS Bill Directs CISA to Issue Identity-Security Guidance for Federal Agentic AI SystemsRegulatory
- CISA Issues Binding Operational Directive BOD 26-04 — Risk-Matrix Patching Framework Explicitly Cites AI-Accelerated ExploitationRegulatory
2026-06-10
- Transforming the Enterprise 2026Strategic Report
- Misaligned AI as a New Insider RiskStrategic Report
- System Card: Claude Fable 5 & Claude Mythos 5Strategic Report
- CVE-2026-49948 — Mem0 Self-Hosted Server Authorization Bypass on Global LLM Configuration Endpoint (CVSS 8.1)Vulnerability
- Indirect Prompt Injection Is Architectural, Not Deployment-Specific — Brave Demonstrates Attacks Against Cloud and Local AI ToolsVulnerability
- CVE-2026-7304 — SGLang Unauthenticated RCE via Unsafe dill.loads Deserialization in Custom Logit ProcessorVulnerability
- CVE-2026-11645 — Chrome V8 Zero-Day (5th of 2026) Exploited in Wild, Added to CISA KEVVulnerability
- CSA RiskRubric V2: AI Risk Assessment Framework Expanded to Cover MCP Servers, Agents, and Excessive AgencyGuidelines
- EU Commission Issues Binding Interim Measures Requiring Meta to Restore WhatsApp Access for Rival AI AssistantsRegulatory
2026-06-09
- The AI Adoption Maturity Model v1.0Strategic Report
- Advancing U.S.–UK Cooperation to Secure Frontier Artificial IntelligenceStrategic Report
- Anthropic Red Team: Mythos Generates Working Windows Kernel N-Day Exploits in Under 32 Minutes — Patch Gap Compression QuantifiedSolutions
- UK Government Launches Advisory AI Growth Labs — Legal Sector First, ICO and Three Regulators CollaborateRegulatory
2026-06-08
- Meta HTS AI Chatbot Authentication Bypass — 20,225 Instagram Accounts Hijacked (Formal AG Disclosure, Material Update)Vulnerability
- CSA / Adversa AI AIRQ Report: 98% of Production AI Agents Carry the Lethal Trifecta — Only 11% Adequately DefendedGuidelines
- OWASP Launches Enterprise Adoption Maturity Model for Agentic AI — Six-Level Deployment Axis vs Four-Level Governance AxisGuidelines
- Miasma Worm Escalates to AI Coding Agent Hijacking — 73 Microsoft GitHub Repos Disabled After SessionStart Hook Payload InjectionVulnerability
- Frontier AI Risk Monitoring Report 2026 Q1: Frontier AI Risk Trends Are Splitting Apart — Misuse Safeguards Improve while Loss-of-control Safety StagnatesStrategic Report
- Depthfirst Autonomous AI Agent Finds 21 FFmpeg Zero-Days (CVE-2026-39210–39218) for ~$1,000 — AI-Accelerated Vulnerability Economics Arrive at Production ScaleVulnerability
- Cross-Session Stored Prompt Injection in Agentic Systems — Persistent Injections Survive Session Termination, Silently Influencing Future ExecutionsVulnerability
- WebMCP Mid-Session Tool Injection (MSTI) — Third-Party Scripts Can Hijack or Frame Agent Tools During Live Sessions via WebMCP ProtocolVulnerability
- CSA Labs: AI Agent Lethal Trifecta — 98% of Production Agents Simultaneously Combine Sensitive Data Access, Untrusted Input, and Outbound Action CapabilityGuidelines
2026-06-07
- Ofcom's Strategic Approach to AI, 2026/27Strategic Report
- Make AI Scale: From Experimentation to TransformationStrategic Report
- Muse Spark Contemplating Safety & Preparedness ReportStrategic Report
- AI Agent Discovers 21 FFmpeg Zero-Days — CVE-2026-39210 Through CVE-2026-39218 Include RCE Primitive via RTSP StreamsVulnerability
- Claude Code MCP ~/.claude.json Config Hijacking — Unpatched npm Post-Install Hook Intercepts SaaS OAuth Tokens in Developer EnvironmentsVulnerability
- Microsoft Security Blog: CI/CD Permission Bypass in Claude Code GitHub Actions Enables Supply-Chain Compromise — Remediation Guidance PublishedGuidelines
- ReliaQuest Agentic AI SOC Correlation Surfaces China-Linked IIS Espionage Cluster OP-512 — Proof Point for AI-Assisted Threat DetectionSolutions
- Depthfirst Autonomous AI Agent Discovers 21 Zero-Days in FFmpeg for ~$1,000 — Widening Discovery-to-Remediation GapSolutions
- OpenAI Releases ChatGPT Lockdown Mode — First Built-In Production Control Targeting Prompt-Injection Data ExfiltrationSolutions
- Trump Signs NSPM-11 — AI in the National Security Enterprise: Binding Adoption and Assurance Mandates for Military and Intelligence AIRegulatory
2026-06-06
- Shaping the Future of Learning: Education Readiness for the Age of AIStrategic Report
- Verified Machine Learning Infrastructure: Formal Methods for Trustworthy Artificial Intelligence DeploymentStrategic Report
- Autonomous LLM Agent Performs End-to-End Salesforce Experience Cloud Exploitation — SOQL Injection and Full Data Extraction Without Human GuidanceVulnerability
- CISA KEV: CVE-2026-28318 — SolarWinds Serv-U Unauthenticated DoS Actively Exploited; Patch Due June 19Vulnerability
- CVE-2026-45758 (CVSS 9.6): Guardrails AI PyPI Supply Chain Compromise — Malicious guardrails-ai 0.10.1 Requires Immediate Credential RotationVulnerability
- Microsoft AI Red Team Updates Agentic AI Failure Mode Taxonomy — 7 New Modes from 12 Months of Production Red TeamingGuidelines
- Anthropic Institute: 'When AI Builds Itself' — Quantitative Evidence of Accelerating Recursive Self-Improvement with Security ImplicationsGuidelines
- OWASP Publishes State of Agentic AI Security and Governance v2.01 — Theoretical Threats Now Have CVEs and Production IncidentsGuidelines
- Microsoft Security Research: Securing CI/CD Pipelines Against Agentic AI Threats — Claude Code GitHub Action Case StudySolutions
- Bipartisan 'Great American AI Act' Discussion Draft Proposes Federal Frontier-Model Safety Framework with 3-Year State PreemptionRegulatory
2026-06-05
- A Blueprint for Democratic Governance of Frontier AIStrategic Report
- CVE-2026-5422: Jupyter Server 2.17.0 Path Traversal Enables Unauthorized Read/Write in Sibling Directories — ML Infrastructure Risk in Shared HostingVulnerability
- Agentic AI Worms Using Open-Weight LLMs on Stolen Compute Propagate Across Linux/Windows/IoT Without Commercial AI Platform — Centralized Safety Controls Structurally BypassedVulnerability
- Anthropic LLM ATT&CK Navigator: AI-Enabled Adversaries Span All 14 MITRE ATT&CK Tactics — Medium-to-High-Risk Actors Up 70% in 12 MonthsVulnerability
- NCSC Publishes Practitioner Guide on Open-Source Software Supply Chain Attacks — npm and PyPI Package Poisoning Tied to AI/ML Toolchain RiskGuidelines
- Anthropic Expands Project Glasswing to 150 Critical Infrastructure Organizations — Patch-Bottleneck Problem SharpensSolutions
- Trump Signs 'Promoting Advanced AI Innovation and Security' Executive Order — Voluntary 30-Day Frontier Model Review and AI Cybersecurity Clearinghouse EstablishedRegulatory
2026-06-04
- Adversarial Distillation: China's Campaign to Extract American AI CapabilitiesStrategic Report
- AI at Work: Strategy Matters More Than Tools (BCG Fourth Annual AI at Work Survey)Strategic Report
- What we learned mapping a year's worth of AI-enabled cyber threats (LLM ATT&CK Navigator)Strategic Report
- BadBone — Dormant AI Model Backdoor Activates Only After Prompt-Learning Customisation, Evades Six Published Defences (arXiv 2605.31246)Vulnerability
- KEV: CVE-2026-45247 (CVSS 9.8) — Mirasvit Full Page Cache Warmer Unauthenticated Deserialization/RCE Actively Exploited; Federal Deadline June 6Vulnerability
- CVE-2026-5241 (CVSS 8.0): HuggingFace Transformers trust_remote_code=False Bypassed via LightGlue Nested Config — Arbitrary Code Execution on Model LoadVulnerability
- CVE-2026-4035 (CVSS 9.1): MLflow AI Gateway Resolves Env Vars in API Keys — Low-Privilege Users Can Exfiltrate Cloud Credentials to Attacker-Controlled EndpointsVulnerability
- AI Agents Enable Adaptive Computer Worms — Autonomous LLM-Powered Malware That Reasons and Adapts Per Target (arXiv 2606.03811)Vulnerability
- Noma Launches Agentic Access Control — Dynamic Registry, Identity, and Policy Enforcement for AI Agents and MCP ServersSolutions
- Microsoft Build 2026: Microsoft Execution Container SDK and Extended Agent 365 for Local Agentic AI Containment and GovernanceSolutions
- US White House Executive Order on Promoting Advanced AI Innovation and Security — CISA Binding Operational Directive in 30 Days, Voluntary Frontier-Model Vetting Framework in 60 DaysRegulatory
- Singapore PDPC Opens Public Consultation on Proposed Advisory Guidelines for Personal Data in Generative AI — Closes 1 July 2026Regulatory
2026-06-03
- 2026 State of Modern Application & AI SecurityStrategic Report
- Beyond the Hype: Assessing Hyperscaler Nuclear Commitments Against U.S. Energy RealitiesStrategic Report
- CISA KEV: CVE-2025-48595 — Android Framework Integer Overflow Enables Local Privilege Escalation, Actively ExploitedVulnerability
- CISA KEV: CVE-2022-0492 — Linux Kernel cgroups v1 Privilege Escalation Added to Known Exploited Vulnerabilities CatalogVulnerability
- CVE-2026-42074 (CVSS 9.3): OpenClaude Coding-Agent CLI — LLM Can Disable Its Own Sandbox via Exposed Schema ParameterVulnerability
- Meta AI Support Bot Social-Engineered to Add Attacker Email in Password-Reset Flow, Enabling Instagram Account TakeoverVulnerability
- CSA Publishes OT-Specific Mythos Readiness Framework — Five Priority Actions for Industrial Environments Where Patch Cycles Cannot Match AI-Compressed TimelinesGuidelines
- ETSI Publishes TS 104 033 — First Formal Standard Defining Security Requirements for AI Computing PlatformsGuidelines
- OWASP Agent Memory Guard Released — Open-Source Runtime Defense for Agentic Memory Poisoning (ASI06)Solutions
- AWS Amazon Bedrock AgentCore Adds Cedar-Based Policy and Lambda Interceptors for Deterministic AI Agent Tool AuthorizationSolutions
- Microsoft Launches MXC — OS-Level Kernel-Enforced Sandbox for AI Agents, with OpenAI and Nvidia as Launch PartnersSolutions
2026-06-02
- Atlantic Council Commission on Artificial Intelligence: US Leadership in the Age of AIStrategic Report
- Aider-AI Coding Agent CVE-2026-10174/10175 Cluster: Pre-Commit Protection Bypass and Architect Mode Code Injection — Public Exploits, No Vendor ResponseVulnerability
- CVE-2026-44211 (CVSS 9.6): Cline Autonomous Coding Agent — Cross-Origin WebSocket Hijack Enables Silent Workspace Exfiltration and Command Injection, No Patch AvailableVulnerability
- NVIDIA Launches Vera BlueField-4 STX In-Silicon Security for Agentic AI Storage — DOCA Vault, Argus, and Flow Enforce Zero-Trust at 800Gb/sSolutions
- Anthropic Confidentially Files S-1 with SEC — Near-$1 Trillion AI Safety Lab Enters Public Market RaceSolutions
- China State Council Publishes Sweeping AI Outbound-Investment Rules — Technology-Tracing Framework Targets Cross-Border AI Deals Regardless of Corporate DomicileRegulatory
2026-06-01
- Realistic Honeypot Evaluations for Scheming PropensityStrategic Report
- How the Factory of the Future Is Reshaping the Economics of Manufacturing CompetitivenessStrategic Report
- Cluster: Four CVEs in Aider-AI Coding Assistant (Code Injection, SQLi, SSRF, Pre-commit Bypass) — No Patch AvailableVulnerability
- First Confirmed In-the-Wild LLM-Agent Post-Exploitation: CVE-2026-39987 Marimo RCE to Full Database Exfiltration in 4 PivotsVulnerability
- US BIS Issues Weekend Guidance Closing Advanced AI Chip Export Loophole for Chinese-Headquartered Entities WorldwideRegulatory
2026-05-31
- Hiroshima AI Process Reporting Framework — Version 2.0Strategic Report
- MemPoison — Stealthy Trojan Attack Injects Persistent Backdoors into LLM Agent Long-Term Memory via Ordinary Dialogue, Bypassing Selective Memory DefensesVulnerability
- ChatGPhish — ChatGPT Markdown Renderer Turns Any Summarized Webpage Into a Live Phishing Surface; No Patch After 30 DaysVulnerability
- Cyberhaven Publishes Enterprise MCP Security Guide — Tool Poisoning, Indirect Prompt Injection, and Shadow MCP as Primary Risk CategoriesGuidelines
- NIST Renames AISIC as 'NIST AI Consortium', Expands Scope to Measurement, Evaluation, and Attack Susceptibility with Six Task GroupsGuidelines
- Palo Alto Networks Completes Portkey Acquisition, Launches Prisma AIRS AI Gateway as Agentic Control PlaneSolutions
- Pennsylvania Sues Character.AI for Chatbot Impersonating Licensed Medical Doctor — First US Enforcement Under Professional Licensing LawRegulatory
2026-05-30
- Legal Responsibility for AI Agents — Discussion PaperStrategic Report
- Trust Imperative 5.0: Governing AI at Scale — Building Trust in Government Through Practical AI AssuranceStrategic Report
- OpenAI's Frontier Governance FrameworkStrategic Report
- CVE-2026-45609: Spring AI MCP-Security Fails SSRF Mitigations Required by MCP Specification — OAuth Discovery Processes Untrusted URLsVulnerability
- CVE-2026-40933: Flowise 1-Click RCE via MCP stdio — Importing a Malicious Chatflow Triggers Arbitrary Server-Side Code ExecutionVulnerability
- CVE-2026-45312: RAGFlow SSTI/RCE (CVSS 9.9) — Any Authenticated User Can Execute OS Commands on Self-Hosted RAG EngineVulnerability
- arXiv: 'Plant, Persist, Trigger' — Sleeper Attack Research Formalises Cross-Interaction Agent Memory Poisoning as a Distinct Threat ClassGuidelines
- SAFE Security Launches AI Security Posture Management (AI-SPM) — Continuous Exposure Management Across Agentic WorkflowsSolutions
- Gray Swan Raises $40M Series A — CMU-Spun AI Red-Teaming Platform Cited in 11 Frontier Model System Cards Expands to EnterpriseSolutions
- Palo Alto Networks Completes Portkey Acquisition — AI Gateway Becomes Control Plane for Agentic Enterprise Security in Prisma AIRSSolutions
- Connecticut Enacts AI Responsibility and Transparency Act (SB 5) — Requires Automated Employment Decision Disclosures and AI-Linked WARN NoticesRegulatory
2026-05-29
- AI Adoption Across the United States: US AI Diffusion Report Q1 2026Strategic Report
- Investigating the Potential Use of Frontier AI Models for Offensive Cyberattacks: A Human Uplift StudyStrategic Report
- GreyVibe: Russia-Nexus Threat Actor Uses LLMs Systematically Across All Attack Phases Against UkraineVulnerability
- CVE-2026-4944 — vLLM Hardcodes trust_remote_code=True, Bypassing User's Explicit Security Flag (CVSS 8.8)Vulnerability
- SymJack — Symlink-Hijack Attack Silently Installs Malicious MCP Servers via Disguised Approval Prompts in 6 AI Coding AgentsVulnerability
- Australia PSPF Advisory 001-2026 — Mandatory Directive: Fix Security Fundamentals Before Adopting Frontier AIGuidelines
- Google Launches AI Threat Defense — Autonomous Mandiant + Wiz + Gemini Platform for AI-Speed Attack ResponseSolutions
- IBM and Red Hat Launch Project Lightwell — $5 Billion AI-Powered Open Source Security ClearinghouseSolutions
- EU AI Act Digital Omnibus Provisional Agreement — High-Risk AI Deadlines Deferred to December 2027 and August 2028Regulatory
- Illinois AI Safety Measures Act (SB 315) Passes — First US State to Mandate Independent Frontier AI Safety AuditsRegulatory
2026-05-28
- CVE-2026-4868: GitLab EE Duo AI Workflow Identity Impersonation — Authenticated User Can Run AI Workflows as Another UserVulnerability
- CISA KEV: Three Supply-Chain Attack CVEs Added — TanStack npm Worm, Nx Console Credential Stealer, DAEMON Tools TrojanVulnerability
- CVE-2026-48710 'BadHost': Unauthenticated Auth Bypass in Starlette Exposes vLLM, LiteLLM, FastAPI, and MCP Server InfrastructureVulnerability
- TELUS Digital GenAI Safety Benchmark: Every Model Tested Was Exploitable, with Attack Success Rates from 1.3% to 93% Across 620,000+ Adversarial AttacksGuidelines
- Cogent Security Launches Agentic Zero Day Response and Autonomous Remediation Amid Evidence AI Compresses Exploit Development to Under 12 HoursSolutions
- EU NIS2 Cooperation Group Adopts Common Incident Reporting Templates — Mandatory Implementing Act to FollowRegulatory
- Singapore IMDA Publishes Discussion Paper on Legal Responsibility for AI Agents — Liability Framework for Agentic AI Value ChainRegulatory
2026-05-27
- The State of Artificial Intelligence in Public Audit: Evidence from Selected Countries and the European UnionStrategic Report
- Supervisory Toolkit for AI Use in Capital MarketsStrategic Report
- AI Agents in Action: A Playbook for Trusted Adoption, Authorization and ScalingStrategic Report
- vLLM OpenAI-Compatible Serving Path Denial of Service — CVE-2026-9540 (CVSS 5.3, Public Exploit Available)Vulnerability
- Lumiverse MCP Server Argument Injection Cluster — Three Critical CVEs Allow RCE via Allowlisted Binaries, TSX Sandbox Escape, and Extension Supply Chain (CVSS 9.1–9.9)Vulnerability
- Update — Megalodon CI/CD Supply Chain Attack Backdoors 5,500+ GitHub Repositories; ~2,900 Still Infected Week After AttackVulnerability
- LangChain Deserialization Vulnerability Allows Remote Code Execution via Overly Broad Object Allowlists — CVE-2026-44843 (CVSS 8.2)Vulnerability
- KEV Alert: LiteSpeed cPanel Plugin Privilege Escalation to Root — CVE-2026-48172 (CVSS 10.0, Actively Exploited)Vulnerability
- OWASP GenAI Publishes AIUC-1 Crosswalk for OWASP Top 10 for Agentic Applications — Bidirectional Control-to-Threat MappingGuidelines
- Anthropic Launches Claude Compliance API with 28 Enterprise Security Integrations for SIEM, DLP, SASE, and IAMSolutions
- Pennsylvania Attorney General Reaches Formal Enforcement Agreement with GEICO Over AI-Driven Auto Insurance CancellationsRegulatory
2026-05-26
- Artificial Intelligence and Employment Futures for the Arab RegionStrategic Report
- Chief People Officers' Outlook — May 2026Strategic Report
- FBI PSA: Kali365 AI-Assisted Phishing-as-a-Service Platform Bypasses Microsoft 365 MFA via OAuth Device Code TheftVulnerability
- Megalodon Campaign Poisons 5,561 GitHub Repositories via CI/CD Workflow Backdoors — Credentials, Cloud Keys, and OIDC Tokens ExfiltratedVulnerability
- KPMG Singapore Launches EDB-Backed Trusted AI Centre of Excellence with AI Assurance FrameworkSolutions
- Anthropic Signals Future Public Release of Mythos-Class Vulnerability-Discovery AI; Glasswing Scan Finds 6,200+ Critical Flaws in 1,000+ Open-Source ProjectsSolutions
2026-05-25
- The Bank, FCA and HM Treasury Joint Statement on Frontier AI Models and Cyber ResilienceStrategic Report
- Agents, Robots, and Us: How AI Reshapes Work and Skills in EuropeStrategic Report
- CVE-2026-41863: LLM-Influenced Filename Reaches Path.resolve Before File Write in Spring AI Anthropic Skills API — Agentic Workflow Path TraversalVulnerability
- CVE-2026-45829 (ChromaToast): Pre-Authentication Remote Code Execution in ChromaDB Python FastAPI Server via Malicious HuggingFace Model LoadingVulnerability
- Anthropic Project Glasswing CVD Dashboard: Claude Mythos Preview Discloses 1,596 Vulnerabilities Across 281 Open-Source ProjectsSolutions
2026-05-24
- From Bans to Recalls: A Public Health Framework for AI Companion BotsStrategic Report
- Draft Commission Guidelines on the Classification of High-Risk AI SystemsStrategic Report
- Singapore Government AI Agents Sandbox: Indirect Prompt Injection Enabling RCE Confirmed as Top Production Agentic Attack VectorVulnerability
- CVE-2026-5194: WolfSSL Certificate Forgery (CVSS 9.1) — Part of 6,200+ AI-Discovered Flaws in Critical Open-Source InfrastructureVulnerability
- Cloud Security Alliance Releases AI Security Maturity Model (AISMM) v1.0 — 12-Category Programme-Level Framework for Enterprise AI SecurityGuidelines
- Singapore Government–Google AI Agents Sandbox: Indirect Prompt Injection Identified as Primary Cybersecurity Risk in Production Agentic DeploymentsGuidelines
- IMDA Publishes Model AI Governance Framework for Agentic AI v1.5 — Real-World Case Studies and Multi-Agent Risk ControlsGuidelines
- Anthropic Project Glasswing: Claude Mythos Preview Demonstrates Production-Scale AI-Driven Vulnerability DiscoverySolutions
2026-05-23
- Open-World Evaluations for Measuring Frontier AI CapabilitiesStrategic Report
- Loss of Oversight: How AI Systems May Become Harder to Audit, Monitor, and InvestigateStrategic Report
- Introducing RAMPART and Clarity: Open Source Tools to Bring Safety Into Agent Development WorkflowStrategic Report
- CISA Adds Drupal Core SQL Injection Vulnerability to KEV Catalog — CVE-2026-9082Vulnerability
- Google Integrates CodeMender Security Agent into Agent Platform EcosystemSolutions
- FTC Fines Cox Media Group $880,000 for False AI 'Active Listening' Advertising ClaimsRegulatory
- Trump Cancels Voluntary AI Model Vetting Executive Order Hours Before SigningRegulatory
2026-05-22
- LiteLLM AI Gateway Allows Authenticated Users to Escalate to proxy_admin via user_role Modification — CVE-2026-47102Vulnerability
- Trend Micro Apex One On-Premise Directory Traversal Enables Malicious Code Injection to Managed Endpoints — CVE-2026-34926 Added to CISA KEVVulnerability
- Langflow AI Workflow Platform Origin Validation Error Enables Cross-Origin Token Theft — CVE-2025-34291 Added to CISA KEVVulnerability
- MOSAIC Coalition Launches to Unify Fragmented AI Security Guidance Across Eight Leading OrganizationsGuidelines
- Expedia Preparing Model Context Protocol Server to Enable Direct AI Agent Access to Travel InventorySolutions
- Trump Administration Postpones AI Cybersecurity Executive Order Hours Before Scheduled SigningRegulatory
- The Private Capital Opportunity in AI-Enabled Climate and Sustainability SectorsStrategic Report
- The Need for Deeper, White-Box Access to Maintain State of the Art Evaluations for Loss of Control ThreatsStrategic Report
- Global AI Pulse: Q1 2026 — From Adoption to OrchestrationStrategic Report
2026-05-21
- Updated Model AI Governance Framework for Agentic AIStrategic Report
- Anthropic Silently Patched Claude Code Sandbox Bypass; Second Bypass in Five Months, No CVE IssuedVulnerability
- NVIDIA TRT-LLM Unsafe Deserialization Vulnerabilities Allow Code Execution, Data TamperingVulnerability
- CISA Adds Seven Known Exploited Vulnerabilities to KEV Catalog, Including Legacy Windows and Current Defender FlawsVulnerability
- KPMG and Anthropic Announce Global Alliance Embedding Claude into Digital Gateway for 276,000 EmployeesSolutions
- 1Password and OpenAI Launch MCP Server to Keep Coding Agent Credentials Out of Model ContextSolutions
- FTC Begins Enforcing Take It Down Act, Sends Warning Letters to 'Nudify' Tool OperatorsRegulatory
- Colorado Enacts Revised AI Act, Narrowing Scope to Automated Decision-Making TechnologyRegulatory
2026-05-20
- Frontier Risk Report (February to March 2026)Strategic Report
- SAP Introduces AI Agent Hub for Vendor-Agnostic Agent Governance Across Enterprise EcosystemsSolutions
- PwC Launches Agentic Scaffolding to Operationalize Enterprise AI Deployments at ScaleSolutions
- Ocean Emerges from Stealth with $28M for Agentic Email Security Platform Built on Autonomous InvestigationSolutions
- Google Launches Antigravity 2.0 Agentic Development Suite and Android CLI for AI-Driven App CodingSolutions
- MLflow Assistant CORS Vulnerability Enables Remote Code Execution on Developer Workstations — CVE-2026-2611Vulnerability
2026-05-19
- CVE-2026-45244: Summarize Browser Extension Missing Authorization Allows Agentic Automation Hijacking via Malicious ContentVulnerability
- CVE-2026-5163: Mattermost AI-Assisted Message Rewrite Channel Membership Bypass Enables Private Message DisclosureVulnerability
- CVE-2026-41947: Authorization Bypass in Dify Trace Configuration Endpoints Allows Tenant-Level Privilege EscalationVulnerability
- UK NCSC and Five Eyes Partners Publish Joint Guidance on Careful Adoption of Agentic AI SystemsGuidelines
2026-05-18
2026-05-17
- Corporate AI Risk Assessment Framework (Draft)Strategic Report
- 2026 Global AI in Finance: The Decision AdvantageStrategic Report
- CVE-2026-42945: Critical 18-Year-Old NGINX Heap Buffer Overflow Enables Unauthenticated RCEVulnerability
- CISA and Five Eyes Partners Release Joint Guidance on Agentic AI AdoptionGuidelines
- UK NCSC Publishes 10 Questions Framework for AI-Assisted Vulnerability DiscoveryGuidelines
- FTC Formalizes Take It Down Act Enforcement Beginning May 19, Sets $53,088 Per-Violation PenaltiesRegulatory
- UK Financial Regulators Issue Joint Statement Framing Frontier AI as Cyber Resilience ObligationRegulatory
2026-05-16
- Position: AI Security Policy Should Target Systems, Not ModelsStrategic Report
- Operationalizing Real-Time Monitoring of Clinical AIStrategic Report
- The State of AI in the Enterprise 2026Strategic Report
- An AI Taxonomy for Criminal Justice: Principled Use of AI in the Criminal Justice SystemStrategic Report
- Strategic Choices in the Age of AI: Shaping the Future of Life SciencesStrategic Report
- Multiple Authorization and Access Control Vulnerabilities in Open WebUI AI PlatformVulnerability
- WARD Guard Model Defends Web Agents Against Prompt Injection with Near-Perfect RecallVulnerability
- Researchers Propose Operating System Security Model for AI Agent FrameworksVulnerability
- Semantic Compliance Hijacking: Payload-less AI Agent Supply Chain Attack Evades Current ScannersVulnerability
- Experian and ServiceNow Partner to Embed Agentic AI in Enterprise WorkflowsSolutions
- FTC Begins Enforcement of Take It Down Act for Nonconsensual Deepfakes on May 19Regulatory
2026-05-15
- The Evaluation Differential: When Frontier AI Models Recognise They Are Being TestedStrategic Report
- Responsible Deployment of OpenClaw: Applying Singapore's Model AI Governance Framework for Agentic AIStrategic Report
- Building Resilient and Scalable AI Value Chains: A Nexus StrategyStrategic Report
- AI Infrastructure in the Age of Sovereignty: Requirements, Strategies and a Trusted Framework for Digital EmbassiesStrategic Report
- RMCP Rust SDK for Model Context Protocol Contains DNS Rebinding Vulnerability — CVE-2026-42559Vulnerability
- PyTorch Lightning Versions 2.6.2 and 2.6.3 Contain Credential Harvesting Mechanism — CVE-2026-44484Vulnerability
- OpenAI Confirms TanStack Supply-Chain Breach Affected Two Employee Devices, Code-Signing Certificates ExfiltratedVulnerability
- PraisonAI Authentication Bypass CVE-2026-44338 Exploited Less Than Four Hours After DisclosureVulnerability
- Akamai Acquires Browser-Based AI Security Firm LayerX for $205 MillionSolutions
2026-05-14
- Shadow-Aether Campaigns: Active AI Agent Attacks Across Latin America — Full-Chain Threat Automation Using Jailbroken ClaudeVulnerability
- AI Threats Expanding Attack Surface in Emerging Markets — New Attack Vectors Beyond Signature DetectionGuidelines
- UK AI Security Institute: Frontier Models Have Broken All Prior Trend Lines for Autonomous Cyber CapabilityGuidelines
- CISA and Five International Partners Release Agentic AI Adoption Guidance — Risk Mitigation Framework for Autonomous SystemsGuidelines
- Upwind AI Agentic Pack: Four-Agent Security Workforce for Cloud Threat Response and RemediationSolutions
- OpenAI Daybreak: Tiered Cybersecurity Initiative for Vulnerability Discovery and Patch ValidationSolutions
- Palo Alto Networks: 75 Vulnerabilities Found Using Claude Mythos Across 130+ Products — 15x Baseline Discovery RateSolutions
- Microsoft MDASH: Multi-Model Agentic Scanning Harness for Production-Scale Vulnerability DiscoverySolutions
- 32 US House Lawmakers Urge White House Action on Frontier AI Cyber Models — Congressional Letter on Mythos and Vulnerability DelugeRegulatory
- G7 Releases SBOM for AI Minimum Elements — Multi-Government Supply Chain Transparency FrameworkRegulatory
2026-05-13
- Dragos Discloses First LLM-Assisted Attack on Critical Water Infrastructure (OT) in MexicoVulnerability
- Mini Shai-Hulud Supply Chain Worm: 170+ Compromised Packages Across TanStack, Mistral AI, Guardrails AI, UiPathVulnerability
- Google Threat Intelligence: First Confirmed AI-Assisted Zero-Day Discovery and Exploitation in ProductionVulnerability
- Exaforce Raises $125M Series B for Agentic SOC Platform—Total Funding $200MSolutions
- Palo Alto Networks Launches Idira Identity Security Platform for Human, Machine, and AI Agent IdentitiesSolutions
- OpenAI Launches Daybreak—Frontier AI Vulnerability Detection PlatformSolutions
- Germany's BaFin Financial Regulator Mandates Targeted AI-Risk Cyber InspectionsRegulatory
- Japan PM Orders Cabinet-Level Cybersecurity Strategy Review in Response to Mythos ThreatRegulatory
- AI in the Breach: How an Adversary Leveraged AI to Target a Water Utility's OTStrategic Report
- Intelligent Infrastructure: A PrimerStrategic Report
2026-05-12
- AI in Nursing Practice: Consensus Report from the American Nurses Association Think TankStrategic Report
- Physical AI: Taking Human-Robot Collaboration to the Next LevelStrategic Report
- Global AI in Finance 2026: The Decision AdvantageStrategic Report
- Malicious Hugging Face Model Repository (Open-OSS/privacy-filter)—AI Supply Chain Attack Delivers Infostealer Malware, 244K DownloadsVulnerability
- UK NCSC Issues Guidance: '10 Questions to Ask When Using AI Models to Find Vulnerabilities'Guidelines
- Google Disrupts First Confirmed AI-Generated Zero-Day Exploit—2FA Bypass Developed by Cybercrime SyndicateSolutions
- Lyrie.ai Releases Agent Trust Protocol (ATP)—First Open Standard for AI Agent Cryptographic VerificationSolutions
2026-05-11
- Attackers Weaponize Claude.ai Shared Chats in Active Malvertising Campaign to Distribute macOS InfostealerVulnerability
- Ollama Heap Out-of-Bounds Read (CVE-2026-7482 'Bleeding Llama') — Critical Memory Leak in 300k+ DeploymentsVulnerability
- Anthropic Research: Constitutional Training Eliminates Agentic Misalignment Blackmail in ClaudeGuidelines
- Anthropic Claude "Dreaming" Feature for Agentic Memory ReviewSolutions
- Responsible AI Needs More Than Good IntentionsStrategic Report
- Making AI Productivity Deliver Real ValueStrategic Report
- CEOs and Boards Are Aligned on AI in Theory, but Divided in Practice (Split Decisions: The BCG CEOs and Boards Survey)Strategic Report
2026-05-10
- Onyx AI platform chat-session authorization bypass allows denial of active LLM generationVulnerability
- LiteLLM AI gateway SQL injection exposes proxy database and managed credentialsVulnerability
- Spring AI MilvusVectorStore filter-expression injection allows vector database manipulationVulnerability
- US explores FDA-style pre-release AI testing after Mythos capabilities alarm White HouseRegulatory
2026-05-09
- Context-maxxing: A path to cognitive agency with generative AIStrategic Report
- Heimdallr Framework Detects LLM-Induced Security Risks in GitHub CI WorkflowsVulnerability
- Multiple Critical Vulnerabilities in PraisonAI Multi-Agent FrameworkVulnerability
- ClaudeBleed: Chrome Extension Vulnerability Allows Hijacking of Anthropic's AI AgentVulnerability
- CVE-2026-42208: Critical SQL Injection in LiteLLM Added to CISA KEVVulnerability
- Cloud Security Alliance: AI Agent Identity Architectures Are Being Built BackwardsGuidelines
- Cobalt Pentesting Report: AI Systems Show 2.5x Higher Severe-Flaw Density Than Legacy AppsSolutions
- ASIC Urges Urgent AI Cybersecurity Action for Australian Financial SectorRegulatory
2026-05-08
- 2026 Work Trend Index: Agents, human agency, and the opportunity for every organizationStrategic Report
- Outlooks on Open-Source Innovation at the India AI Impact Summit 2026Strategic Report
- The Geopolitical Debates Over Controlling Cloud ComputeStrategic Report
- Gemini CLI Indirect Prompt Injection Enables Supply Chain Compromise (CVSS 10.0)Vulnerability
- Cline Kanban WebSocket Hijacking Enables AI Agent Takeover (CVSS 9.7)Vulnerability
- Claude Code 'TrustFall' Supply Chain Attack via Malicious RepositoriesVulnerability
- Claude Code MCP OAuth Token Theft via Man-in-the-Middle AttackVulnerability
- Ivanti EPMM Remote Code Execution Added to CISA KEV CatalogVulnerability
- EU Delays AI Act High-Risk System Rules to December 2027Regulatory
2026-05-07
- NanoClaw Container Agent Filesystem Boundary Vulnerability Enables Host Read/WriteVulnerability
- Copy Fail: Kubernetes Container Escape via Page Cache Corruption Added to CISA KEVVulnerability
- CISA Adds Palo Alto PAN-OS Zero-Day to KEV Following Active ExploitationVulnerability
- FIS Partners with Anthropic to Deploy Agentic AI for Financial Crime InvestigationsSolutions
- Apple Settles $250M Class-Action Lawsuit Over Delayed AI Features in SiriRegulatory
2026-05-06
- Open-Weight AI Models Require Proportional Evaluation ApproachesStrategic Report
- Our evaluation of OpenAI's GPT-5.5 cyber capabilitiesStrategic Report
- Empowering Defenders: AI for CybersecurityStrategic Report
- Critical Input Validation Vulnerability in OpenClaw Agent Platform Allows Trust EscalationVulnerability
- OWASP Unveils Strategic Plan for Eliminating Insecure SoftwareGuidelines
- Kentucky Files First State Enforcement Action Against AI Chatbot ProviderRegulatory
- U.S. Formalizes Pre-Deployment AI Security Testing with Frontier LabsRegulatory
2026-05-05
- 2026 Government AI Landscape AssessmentStrategic Report
- Risk and Compliance 2026: Refining Oversight for a Volatile, AI-Driven WorldStrategic Report
- The AI Jobs Transition Framework: Mapping AI's Near-Term Impact on JobsStrategic Report
- Split Decisions: The BCG CEOs and Boards Survey — AI Governance GapsStrategic Report
- Technology Convergence: The New Logic for Competitive Advantage (2026 Edition)Strategic Report
- Artificial Intelligence Index Report 2026Strategic Report
- Multiple Critical Vulnerabilities in n8n Workflow Automation MCP OAuth ImplementationVulnerability
- Critical Heap Out-of-Bounds Vulnerability in Ollama Enables Arbitrary Code ExecutionVulnerability
- CISA and International Partners Publish Joint Advisory on Secure Agentic AI DeploymentGuidelines
- OpenAI Launches Advanced Account Security for High-Risk ChatGPT UsersSolutions
- Anthropic Partners with Blackstone, Hellman & Friedman, and Goldman Sachs on $1.5B Enterprise AI Services VentureSolutions
- Cisco to Acquire Astrix Security, Extending Zero Trust to Non-Human Identities and AI AgentsSolutions
2026-05-04
- Summary Analysis of Responses to the Request for Information Regarding Security Considerations for AI AgentsStrategic Report
- Claude Opus AI Agent Deletes Production Database in 9 Seconds After Misinterpreting CredentialsVulnerability
- CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV CatalogVulnerability
- Pentagon Completes AI Integration Agreements with Seven Tech Giants for Classified NetworksSolutions
2026-05-03
2026-05-02
2026-05-01
- Global Economic and Financial Implications of Artificial IntelligenceStrategic Report
- Strengthening Information Integrity: Advertising, Artificial Intelligence and the Global Information CrisisStrategic Report
- 2026 Global AI in Financial Services Report – Adoption, Impact and RisksStrategic Report
- Critical Agent Hijacking in Google Gemini CLI Enabled Pre-Sandbox RCE and Supply Chain AttacksVulnerability
- cPanel/WHM Authentication Bypass Enables Unauthenticated Admin Access — Active Exploitation ConfirmedVulnerability
- CSA Releases AARM Framework for Securing Agentic Runtime EnvironmentsGuidelines
- NIST Publishes Analysis of Industry Responses to AI Agents Security RFIGuidelines
- OpenAI Launches Advanced Account Security with Phishing-Resistant AuthenticationSolutions
2026-04-30
- Evaluating whether AI models would sabotage AI safety researchStrategic Report
- How Agentic AI Will Reshape PaymentsStrategic Report
- 2026 Transparency Report on Foundation Model ImpactsStrategic Report
- Path Traversal Vulnerabilities Disclosed in Multiple MCP Server ImplementationsVulnerability
- Critical RCE in DocsGPT via MCP Test Bypass Patched in Version 0.16.0Vulnerability
- Dual RCE Vulnerabilities in Ollama Windows Update Mechanism Enable Code ExecutionVulnerability
- Critical LiteLLM AI Gateway Vulnerability Exploited 36 Hours After Public DisclosureVulnerability
- OpenAI Expands AI-Assisted Cyber Defense Access to All Vetted Government LevelsSolutions
- FIDO Alliance Launches Agentic Authentication Standards Initiative for AI-Driven CommerceSolutions
2026-04-29
2026-04-28
- Black Hat Asia keynote assesses practical limits of agentic offensive security automationVulnerability
- Microsoft patches privilege escalation flaw in Entra ID Agent ID Administrator role affecting agentic identitiesVulnerability
- China blocks Meta's $2 billion acquisition of agentic AI startup ManusRegulatory
2026-04-26
2026-04-25
- China's 360 Digital Security Claims ~1,000 AI-Discovered Vulnerabilities, Echoing Mythos CapabilitiesVulnerability
- Palo Alto Unit 42 Demonstrates Autonomous AI Agent 'Zealot' Executing Full Cloud Attack ChainVulnerability
- Anthropic and NEC Partner to Deploy Claude to 30,000 Employees in JapanSolutions
- Security Leaders Converge on AI-as-Identity Framework to Manage Agentic RiskSolutions
- Copperhelm Emerges with $7M Seed for Agentic Cloud Security PlatformSolutions
2026-04-24
- Palo Alto Unit 42 Demonstrates Autonomous Multi-Agent Cloud Attack with 'Zealot' PoCVulnerability
- Cisco Discloses Memory Persistence Vulnerability in Claude Code via NPM Post-Install HooksVulnerability
- Forcepoint Discloses 10 In-the-Wild Indirect Prompt Injection Payloads Targeting AI AgentsVulnerability
- CISA and 13 International Partners Issue Joint Guidance on China-Nexus Covert NetworksGuidelines
- Google Introduces Agent Identity Management and Security Dashboard at Cloud Next '26Solutions
- Anthropic Mythos Model Accessed by Unauthorized Users Despite Limited PreviewRegulatory
- White House Accuses China of 'Industrial-Scale' AI Model Distillation CampaignsRegulatory
2026-04-23
- U.S. Lawmakers Briefed on Jailbroken AI Models Generating Detailed Attack Plans in SecondsVulnerability
- 65% of Enterprises Experienced AI Agent Security Incidents, 82% Discovered Undiscovered AgentsVulnerability
- UK NCSC Warns of Cybersecurity 'Perfect Storm' and Announces £90m Resilience InvestmentGuidelines
- OpenAI Releases Privacy Filter Model for PII Detection and RedactionSolutions
- Anthropic Launches Project Glasswing with Claude Mythos for Defensive Vulnerability DiscoverySolutions
2026-04-22
- Multiple AI-Related CVEs Disclosed in NVD Database Affecting LLM ApplicationsVulnerability
- Mozilla Reports Mythos AI Discovered 271 Security Vulnerabilities in Firefox 150Vulnerability
- Anthropic's Mythos AI Model Accessed by Unauthorized Users in Security BreachVulnerability
- Cloud Security Alliance Reports Two-Thirds of Organizations Suffer AI Agent Cybersecurity IncidentsGuidelines
- Cybersecurity Insiders Report: 92% of Organizations Lack Visibility Into AI IdentitiesGuidelines
- ServiceNow Completes $7.7B Acquisition of Armis Security, Expanding AI-Driven Security PlatformSolutions
2026-04-21
- AI Engine Pro Authorization Bypass VulnerabilityVulnerability
- Vercel Supply Chain Breach via Context.ai AI Tool CompromiseVulnerability
- Google Antigravity AI Agent Manager Sandbox Escape VulnerabilityVulnerability
- Analysis: AI-Powered Security Operations Required for Supply Chain DefenseGuidelines
- AI and CMMC Compliance Guidance for Defense ContractorsGuidelines
- Google AI Systems Block 8.3 Billion Malicious Ads Using Gemini AnalysisSolutions
- WitFoo Releases 114M-Record Enterprise Attack Traffic DatasetSolutions
- Brain Corp Achieves SOC 2 Type II Certification for AI Robotics PlatformSolutions
- Adobe Launches AI Suite for Enterprise Marketing AutomationSolutions
- NSA Reportedly Using Anthropic's Mythos Despite Pentagon Supply Chain Risk DesignationRegulatory
- Global Regulators Monitor Anthropic's Mythos for Banking System RisksRegulatory
- Singapore Champions Global AI Testing Standardization InitiativeRegulatory
2026-04-20
- Path Traversal Vulnerability in Awesome-LLM-Apps Beifong AI AgentVulnerability
- OWASP Releases AI Security Solutions Landscape for Agentic AI Q2 2026Guidelines
- MCP Protocol Positions Agentic AI for Production Deployment in 2026Solutions
- Anthropic's Mythos Model Drives Wave of Critical Security UpdatesSolutions
- China Introduces Comprehensive AI Companion Regulations for $30B MarketRegulatory
- NSA Uses Anthropic's Mythos Despite Pentagon Supply Chain Risk DesignationRegulatory
- Trump Administration Expands Multi-Front Campaign Against State AI RegulationRegulatory
- EU Criticizes Lack of Regulatory Engagement on Anthropic's Mythos ModelRegulatory
2026-04-19
- Tycoon 2FA Phishing-as-a-Service Platform Disrupted, Attack Volume IncreasesVulnerability
- Asante Babers Consulting Releases Digital Transformation Cybersecurity GuidelinesGuidelines
- Samsung Expands Galaxy AI Features Through One UI 8.5 Beta RolloutSolutions
- Meta Announces AI-Driven Workforce Restructuring with 8,000 Job CutsSolutions
- Ring-a-Ding Launches OpenClaw Skill for AI Agent TelephonySolutions
- Anthropic CEO Meets White House Officials Amid Pentagon Supply Chain DisputeRegulatory
2026-04-18
- Apache ActiveMQ Classic Remote Code Execution Actively ExploitedVulnerability
- pandas-ai SQL Injection Vulnerability in Query ExecutionVulnerability
- LangChain LangSmith Studio URL Parameter Injection VulnerabilityVulnerability
- Three Microsoft Defender Zero-Days Actively Exploited by Threat ActorsVulnerability
- Analysis: AI Amplifies Every Traditional Vulnerability RiskGuidelines
- Industry Report: AI Models Show Rapid Progress in Vulnerability ResearchGuidelines
- NIST Releases AI RMF Profile Concept for Critical InfrastructureGuidelines
- Google AI Blocked 8.3 Billion Malicious Ads Using Enhanced DetectionSolutions
- American Express Acquires Agentic AI Fintech HyperSolutions
- Loop Raises $95M Series C for AI-Powered Supply Chain Security PlatformSolutions
- DeepL Launches Real-Time Voice-to-Voice Translation SuiteSolutions
- Illinois Lawmakers Advance AI Regulation InitiativesRegulatory
- HIMSS Advocates for Consistent Nationwide AI Regulation in HealthcareRegulatory
- White House Holds 'Productive' Meeting with Anthropic CEO Over Mythos AI ModelRegulatory
2026-04-17
- CVE-2026-35639: Critical Privilege Escalation in OpenClaw AI Agent Platform (CVSS 8.7)Vulnerability
- 'Comment and Control': Prompt Injection via GitHub Comments Compromises Claude Code, Gemini CLI, and GitHub CopilotVulnerability
- OpenAI Releases GPT-5.4-Cyber for Vetted Security ProfessionalsSolutions
- Mozilla Launches Thunderbolt: Open-Source, Self-Hosted Enterprise AI ClientSolutions
- China CAC Issues Interim Measures on Anthropomorphic AI Interaction ServicesRegulatory
2026-04-16
- AI Vulnerability Storm: Mean Time-to-Exploit Collapses from 2.3 Years to Under 24 HoursVulnerability
- ShareLeak / PipeLeak: Patched Microsoft Copilot Studio and Salesforce Agentforce Still Exfiltrate Data via Prompt InjectionVulnerability
- MCPwn: nginx-ui Authentication Bypass Enables Unauthenticated MCP Server TakeoverVulnerability
- Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation — 12,000+ Instances ExposedVulnerability
- SANS/CSA/OWASP Emergency Briefing: 'Building a Mythos-Ready Security Program'Guidelines
- FireTail AISPM Analysis: 90% of Enterprise AI Usage is Shadow AI, Posing Critical Data Leakage RiskSolutions
- Semgrep April 2026 AppSec Platform: AI-Powered IDOR and Broken Auth Detection in BetaSolutions
- OpenAI Launches GPT-5.4-Cyber for Vetted Security ProfessionalsSolutions
- IAPP 2026 Global Summit: Global Regulators Signal Shift to Operational AI EnforcementRegulatory
- China CAC Issues Draft Measures for Human-Like Interactive AI ServicesRegulatory
- Fitch Ratings Warns AI Vulnerability Discovery Compresses Cyber Insurance RiskRegulatory
2026-04-15
- Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation (CVE-2025-59528)Vulnerability
- LiteLLM RCE via Bytecode Rewriting (CVE-2026-40217)Vulnerability
- Exploit Timeline Compression — Mean Time-to-Exploit Falls Below 24 HoursVulnerability
- Project Glasswing CVE Transparency Gap — Only One Confirmed CVE Despite 'Thousands' ClaimedVulnerability
- KPMG and INSEAD Launch Global AI Board Governance PrinciplesGuidelines
- SANS, CSA, and OWASP Release Emergency 'Mythos-Ready' Strategy Briefing for CISOsGuidelines
- Fortreum Acquires Kovr.AI to Create AI-Native Compliance PlatformSolutions
- OpenAI Launches GPT-5.4-Cyber for Vetted Security ProfessionalsSolutions
- California Cybersecurity Audit Rule Analysis Highlights AI Compliance BurdenRegulatory
- EU AI Act Full Enforcement Approaches with Member State Readiness GapsRegulatory
2026-04-14
- LiteLLM Security Hardening After March 2026 Supply Chain CompromiseVulnerability
- Large Reasoning Models Achieve 97% Jailbreak Success as Autonomous AttackersVulnerability
- Agentic AI / MCP Exposure: 43% of Public MCP Servers Vulnerable, 30 CVEs in 60 DaysVulnerability
- Prompt Injection: OWASP #1 LLM Risk Continues to Surge in 2026Vulnerability
- CVE-2026-22778: Critical vLLM RCE via Crafted Video InputVulnerability
- CVE-2026-39987: Pre-Auth RCE in Marimo Python NotebookVulnerability
- CVE-2026-39426: Stored XSS in LLM Application Frontend (MdRenderer.vue)Vulnerability
- NIST Cybersecurity Framework Profile for AI (Cyber AI Profile / NISTIR 8596)Guidelines
- Cynomi Launches AI Insights and Co-Worker AgentsSolutions
- Anthropic Project Glasswing + Claude Mythos Preview for Zero-Day DiscoverySolutions
- NIST AI Agent Standards Initiative Listening Sessions BeginRegulatory
- NIST AI RMF Profile for Trustworthy AI in Critical InfrastructureRegulatory
2026-04-12
- LiteLLM Supply Chain Attack Compromises 500K+ Machines via PyPI PoisoningVulnerability
- MCP Library SSRF via JSON Schema Mishandling (CVE-2026-39885)Vulnerability
- Red Hat OpenShift AI Token Disclosure (CVE-2026-5483)Vulnerability
- Marimo Pre-Auth RCE Exploited Within 10 Hours (CVE-2026-39987)Vulnerability
- Sockpuppeting: Universal Single-Line Jailbreak Affects 11 Major LLMsVulnerability
- aws-mcp-server Critical Command Injection (CVE-2026-5058)Vulnerability
- MITRE ATLAS 2026 Update Expands Agentic AI Threat TaxonomyGuidelines
- Google DeepMind Maps Six Categories of Web-Based AI Agent TrapsGuidelines
- OWASP Publishes Top 10 for Agentic Applications 2026Guidelines
- Cynomi Launches AI Co-Worker Agents to Scale Cybersecurity ExpertiseSolutions
- OPSWAT Predictive AI Engine Achieves 99.99% Pre-Execution Threat DetectionSolutions
- Agentic AI Security Readiness Gap: 88% Report Incidents, Only 29% Feel SecureSolutions
- Anthropic Launches Project Glasswing with Claude Mythos Preview for Defensive Vulnerability HuntingSolutions
- U.S. Courts Impose $145K+ in Sanctions for AI-Generated Legal CitationsRegulatory
- China Issues Trial Guidelines on AI Ethics ReviewRegulatory
- China Finalises Interim Measures on Anthropomorphic AI Interaction ServicesRegulatory
2026-04-11
- Adversa AI Audit: 93% of AI Agent Frameworks Use Unscoped API Keys, 0% Have Per-Agent IdentityVulnerability
- Google DeepMind Publishes 'AI Agent Traps' Taxonomy: Six Attack Categories Against Autonomous AgentsVulnerability
- CVE-2026-39987: Marimo Pre-Auth RCE Exploited Within 10 Hours of DisclosureVulnerability
- NIST AI Agent Standards Initiative Begins April Listening SessionsGuidelines
- CIS Report: Prompt Injections — The Inherent Threat to Generative AIGuidelines
- LayerX Research: AI Browser Extensions Are the Most Dangerous Unmonitored AI Threat SurfaceSolutions
- Anthropic Project Glasswing: Claude Mythos Preview Discovers Thousands of Zero-DaysSolutions
- South Korea Overhauls Personal Information Protection Act with 10% Turnover FinesRegulatory
- Washington and Oregon Enact AI Companion Chatbot Safety LawsRegulatory
- US AI Enforcement Accelerates via State Laws as Federal Policy StallsRegulatory
2026-04-10
- MCP Protocol Tool Poisoning via Malicious Server RegistrationVulnerability
- NIST Releases AI Agent Security Companion GuideGuidelines
- Microsoft Launches AI Security Posture Management for AzureSolutions
- Singapore IMDA Updates AI Governance Framework for Financial ServicesRegulatory
- EU AI Office Publishes High-Risk AI Enforcement TimelineRegulatory
Glossary terms
- AI 'ghost citations' (hallucinated legal precedents)
- AI CI/CD pipeline compromise
- AI agent
- AI agent identity layer
- AI agent skill (plugin)
- AI export controls
- AI gateway
- AI governance measurement gap
- AI hallucination
- AI incident investigation playbook
- AI model fine-tuning
- AI model identity & authentication
- AI model security flaw disclosure framework
- AI red-teaming
- AI scanner evasion
- AI supply chain attack
- AI-accelerated vulnerability discovery
- AI-generated content disclosure (EU AI Act Article 50)
- API key exposure
- Agentic SOC (AI-driven security operations)
- Agentic access control
- Agentic pipeline
- Agentic vulnerability remediation
- Agentjacking
- Approval gate (agentic AI)
- Binding Operational Directive (BOD)
- Biodesign audit trail (AI)
- Broken access control (AI plugins & chatbots)
- Canada Bill C-34 AI chatbot safety duties
- Colorado AI Act (SB 26-189) — automated decision-making accountability
- Critical infrastructure AI risk mandate
- Cross-origin agent execution
- Cross-session prompt injection
- Data and model poisoning
- Data localisation vs. AI governance
- Deepfake consent violation (privacy enforcement)
- Deployment simulation (pre-release AI behaviour testing)
- Dual-use AI capability
- EU AI Act risk tiers
- Excessive agency (AI agents)
- Federal AI procurement clause
- Guardrail incompleteness theorem (limits of AI safety controls)
- Guardrails
- Header exfiltration (AI agent credential theft via redirects)
- Indirect prompt injection
- Jailbreak severity benchmark
- LLMjacking
- Lethal trifecta (AI agents)
- Localhost trust boundary attack
- Misaligned AI insider risk
- Misuse safeguards vs. loss-of-control safety
- Model Context Protocol (MCP)
- Multi-agent data leakage
- Multi-tenant AI infrastructure risk
- N-day exploit acceleration (AI-compressed patch window)
- National Security Presidential Memorandum (NSPM-12)
- OS command injection (AI tooling)
- OWASP Agentic Skills Top 10 (AST10)
- Path traversal (AI agents)
- Policy bypass (AI agent trust policies)
- Privilege escalation (AI context)
- Prompt injection
- Reasoning-extension denial-of-service (ReDoS for AI)
- Retrieval-Augmented Generation (RAG)
- SQL injection via AI endpoints
- Shadow AI
- Software Bill of Materials (SBOM) for AI
- Synthetic media / deepfakes
- Synthetic performer disclosure (AI advertising law)
- System card
- Tool poisoning (MCP / agentic pipelines)
- Unauthenticated remote code execution (RCE)
- Vector store injection
- Vibe coding
- Vietnam AI risk-based classification (Decree 142)
- Worm / self-propagating malware targeting AI toolchains
- Zero standing privilege (AI agents)
- Zero-trust for AI agents