Ecommerce platforms represent one of the most consistently targeted areas of the modern digital estate. They process payment ...

OpenClaw has patched six new vulnerabilities in its popular agentic AI assistant, covering server-side request forgery (SSRF), missing authentication and path traversal bugs, according to Endor Labs.

Researchers say an AI-powered code scanner traced untrusted data across layers of OpenClaw, exposing exploitable weaknesses including SSRF, authentication bypass, and path traversal.

Modern PDF platforms can now function as full attack gateways rather than passive document viewers.

While the AI itself wasn’t weaponized, the technique raises concerns about AI agents with broad system access.

The ink was barely dry on Cloudflare’s announcement that it had rebuilt the most popular web framework in existence using AI — ...

Server-side rendering vulnerabilities could allow attackers to steal authorization headers or perpetrate phishing and SEO hacking.

Endor Labs launches AURI, a free security platform that embeds directly into AI coding assistants like Cursor and Claude to catch vulnerabilities in AI-generated code before they ship to production.

OpenClaw patches ClawJacked flaw, log poisoning bug, and multiple CVEs as 71 malicious ClawHub skills spread malware and ...

Shanon is an open source AI pentester built on the Claude SDK; runs cost about $60 in API credits, with CI/CD support; ...