cd/entity/The Hacker News· home entities The Hacker News
grep -l @the hacker news /news/*.json | wc -l → 23

The Hacker News

mentions 23 type Person page 1/2 feed RSS

// recent coverage 23 mentions

07:41
2026-07-09
letsdatascience.com
ai-safety

Detection Engineering Faces AI-Driven Attack Surge

Intezer published a July 2026 vendor analysis arguing that AI-assisted attackers are forcing detection-engineering teams to move beyond static indicators and periodic rule tuning, requiring continuous…

12:13
2026-07-08
byteiota.com
ai-safety

GitLost: GitHub Agentic Workflows Leak Private Repos

On July 7, Noma Security disclosed a critical prompt injection flaw in GitHub's Agentic Workflows, dubbed GitLost, that allows any free GitHub account to extract private repository contents by posting…

19:49
2026-07-07
letsdatascience.com
ai-safety

GitHub AI Agent Leaks Private Repositories

Noma Labs disclosed GitLost, a July 2026 prompt-injection technique that could make GitHub Agentic Workflows leak private repository contents through a public issue comment. The attack exploits an arc…

19:25
2026-07-06
letsdatascience.com
ai-safety

SkillCloak Exposes Gaps In AI Agent Skill Scanners

Researchers at Hong Kong University of Science and Technology introduced SkillCloak, a framework that demonstrates how malicious third-party coding-agent skills can evade static install-time scanners …

08:23
2026-06-30
thenextweb.com
artificial-intelligence

Chrome is putting things on your computer you never agreed to

Google has been silently downloading its 4GB Gemini Nano AI model onto Chrome users' devices without consent since at least April, while a malicious Chrome extension disguised as Perplexity AI logged …

22:48
2026-06-24
letsdatascience.com
ai-safety

Varonis Reveals SearchLeak Exploiting Copilot Enterprise

Varonis Threat Labs disclosed SearchLeak, a three-stage vulnerability chain in Microsoft 365 Copilot Enterprise that can exfiltrate emails, MFA codes, calendar items, SharePoint and OneDrive files via…

18:08
2026-06-20
letsdatascience.com
ai-agents

Microsoft AutoJack exposes RCE via AI browsing agents

Microsoft's Defender Security Research Team disclosed AutoJack on June 18, 2026, a chained exploit that achieves host-level remote code execution via AI browsing agents in AutoGen Studio pre-release b…

13:53
2026-06-18
letsdatascience.com
ai-agents

Orphaned AI Agents Create Hidden Access Risks

Enterprises are accumulating orphaned AI agents—autonomous tools left running after their creators depart—and standing privileges that increase attack surface, according to The Hacker News. Compromise…

19:18
2026-06-13
letsdatascience.com
ai-agents

Researchers disclose Agentjacking hijacks AI coding agents

Cybersecurity researchers at Tenet Security disclosed a new attack class called 'Agentjacking' that tricks AI coding agents into executing attacker-controlled code via maliciously crafted Sentry error…

10:51
2026-06-12
letsdatascience.com
ai-safety

Researchers Find Critical Vulnerabilities in LangGraph

Check Point Research's June 2026 analysis of LangGraph and LangChain, building on Cyera Research's March 2026 findings, identified three critical vulnerabilities including a CVSS 9.3 deserialization f…

16:23
2026-06-06
letsdatascience.com
ai-ethics

Smart TVs Enlisted as Residential Proxies for AI

Independent researcher Buchodi found that free apps on smart-TV platforms from Samsung, LG, and others are embedding a Bright Data SDK that turns home devices into residential proxy nodes for web scra…

17:54
2026-06-05
letsdatascience.com
ai-safety

Claude Code exposes OIDC tokens via GitHub Action flaw

Microsoft Threat Intelligence identified a prompt-injection vulnerability in Anthropic's Claude Code GitHub Action that could expose CI/CD workflow secrets, according to the Microsoft Security Blog. S…

16:57
2026-06-04
letsdatascience.com
ai-safety

Claude Code Flaw Exposes Repositories to Compromise

Security researchers at Flatt.tech disclosed a critical supply-chain vulnerability in Anthropic's Claude Code GitHub Actions integration that a single malicious GitHub issue, pull request, or comment …

17:24
2026-05-29
letsdatascience.com
large-language-models

Attackers Use LLM Agent After Marimo Exploit

An unknown threat actor exploited a public Marimo notebook via CVE-2026-39987 on May 10, 2026, using a large language model agent to drive post-compromise activity. The intruder extracted cloud creden…

page 1 / 2 next →
// co-occurs with top 8 entities