Malicious Hugging Face Models Could Trigger Remote Code Execution

A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI ...
MIT Technology Review

The Meta hack shows there’s more to AI security than Mythos

Gong and other scholars have been issuing warnings about the security vulnerabilities of AI agents for a while. They publish ...
Tech Xplore

AI worm adapts across networks, turning any online device into potential target

A team of researchers at the University of Toronto has discovered a new class of cyberthreat that gives hackers more power ...
CSO Online

Hugging Face Transformers RCE flaw enables stealthy compromise via AI model configs

With over 2.2 billion installs, the flawed Python package offers attackers a huge blast radius, including silent access to ...

Researchers show how AI-powered worms could wreak havoc on the internet

We've seen how AI can be used to find flaws in apps and websites, but researchers have now demonstrated how it could be ...

Scientists Find Way to Supercharge Dangerous Computer ‘Worms’ With A.I.

Researchers at the University of Toronto showed how hackers could use artificial intelligence to create a program that could ...
The Hacker News

⚡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More

Your Monday cybersecurity recap covers the latest digital threats, exposed weaknesses, active attacks, and security stories ...
Tech Times

AI vs AI Cybersecurity: Sysdig Documents First LLM-Agent Intrusion in the Wild

AI vs AI cybersecurity arrived in documented form on May 10, when an LLM agent drove a four-pivot intrusion to database exfiltration in under an hour with no human direction. CrowdStrike data puts ...
Tech Times

llama.cpp GGUF Parser Flaws: Critical Integer Overflow Enables Arbitrary Reads in Every Local AI Stack

GGUF parser vulnerabilities disclosed May 15, 2026 include a critical integer overflow that lets any malicious model file ...
CoinTelegraph

Map Protocol token plummets 96% after a quadrillion token mint exploit

The attacker tricked the Butter Network cross-chain bridge into minting millions more tokens than the legitimate supply of MAPO. MAPO, the native token of the Map Protocol, fell 96% on Wednesday after ...
Forbes

‘Holy Grail’—Google Researchers Found Pixel 10 Zero-Click Exploit Chain

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Google's own hackers disclose holy grail of Pixel 10 security vulnerabilities. Back in ...

OpenAI Launches Daybreak the Same Day Google Confirmed the First AI-Built Zero-Day Attack

On May 11, the same day Google's Threat Intelligence Group disclosed the first confirmed case of attackers using AI to build a zero-day exploit, OpenAI launched Daybreak, a new agentic cybersecurity ...