When AI Systems Can Act, Prompt Injection Becomes A Security Risk

The moment an AI system can read internal systems, trigger workflows, move money, send emails, update records or approve actions, the risk profile changes.
eWeek

OpenAI Introduces New Safeguards in ChatGPT to Prevent AI Prompt Injection

OpenAI launches Lockdown Mode and Elevated Risk warnings to protect ChatGPT against prompt-injection attacks and reduce data-exfiltration risks.

Attackers finally get around to exploiting critical Microsoft bug from 2024

Ignore patches at your own risk. According to Uncle Sam, a SQL injection flaw in Microsoft Configuration Manager patched in October 2024 is now being actively exploited, exposing unpatched businesses ...

CISA flags critical Microsoft SCCM flaw as exploited in attacks

CISA ordered federal agencies on Thursday to secure their systems against a critical Microsoft Configuration Manager ...

These 4 critical AI vulnerabilities are being exploited faster than defenders can respond

From prompt injection to deepfake fraud, security researchers say several flaws have no known fix. Here's what to know about them.
Stacker on MSN

The problem with OpenClaw, the new AI personal assistant

Oso reports on OpenClaw, an AI assistant that automates tasks but raises security concerns due to its access to sensitive data and external influences.
GitHub

MSSQL Commandline Post-Exploitation Toolkit

A fully featured command line tool for post-exploitation operations on Microsoft SQL Server instances. Provides RCE (Remote Code Execution), privilege escalation, persistence, evasion, and cleanup ...
bitnewsbot

Fortinet fixes critical FortiSIEM OS command injection flaw.

On Jan 14, 2026, Fortinet published updates to fix a critical vulnerability in FortiSIEM that could allow unauthenticated attackers to execute code on vulnerable appliances, affecting Super and Worker ...
InfoWorld

Building AI agents the safe way

The best defense against prompt injection and other AI attacks is to do some basic engineering, test more, and not rely on AI to protect you. If you want to know what is actually happening in ...
Infosecurity-magazine.com

UK NCSC Raises Alarms Over Prompt Injection Attacks

Prompt injection vulnerabilities may never be fully mitigated as a category and network defenders should instead focus on ways to reduce their impact, government security experts have warned. Then ...
PC World

Want faster PC shutdowns? Master these Windows commands and tricks

Sometimes you just want Windows to shut down. But instead of shutting down quickly, the system seems to ponder, blocked by running processes, background services, or open apps. However, for decades ...
Frontiers

Enhanced SQL injection detection using chi-square feature selection and machine learning classifiers

This study proposes an enhanced SQL injection detection using Chi-square feature selection (FS) and machine learning models. A combined dataset was assembled by merging a custom dataset with the ...