An AI Agent Broke Into McKinsey’s Internal Chatbot and Accessed Millions of Records in ...

A red-team experiment found an AI agent could autonomously exploit a vulnerability in McKinsey’s internal chatbot platform, exposing millions of conversations before the issue was patched.
Cybernews

Red-teamers unleash AI agent on McKinsey’s chatbot, gain full access in two hours

CodeWall says the threat landscape is shifting drastically in the AI era, and AI agents autonomously selecting and attacking targets will become the new normal.

Previously harmless Google API keys now expose Gemini AI data

Google API keys for services like Maps embedded in accessible client-side code could be used to authenticate to the Gemini AI ...
Bleeping Computer

Critical Langflow RCE flaw exploited to hack AI app servers

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has tagged a Langflow remote code execution vulnerability as actively exploited, urging organizations to apply security updates and ...