AI Codex Exploits Samsung TV Driver Flaw to Gain Root Access

A new experiment has shown how an AI coding assistant, Codex, can independently escalate privileges on a Samsung Smart TV by abusing dangerously exposed kernel drivers in Samsung’s KantS2 Tizen firmware. Working from an existing browser foothold, Codex…

·

AI, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

Hacker Used Claude Code, GPT-4.1 to Exfiltrate Hundreds of Millions of Mexican Records

A lone hacker used Claude Code and GPT-4.1 to exfiltrate hundreds of millions of Mexican citizen records from 9 government agencies.

·

AI, Artificial Intelligence, ChatGPT, Claude, Claude Code, Cyber Attack, Cyber Crime, Cyber-Attacks, cybersecurity, Data Breaches, Mexico, OpenAI, Security

¶¶¶¶¶

Claude and ChatGPT Exploited in Sweeping Cyber Campaign Against Government Agencies

In a groundbreaking technical report released by Gambit Security researcher Eyal Sela, new details have emerged about a massive cyberattack targeting government infrastructure. A single threat actor successfully leveraged artificial intelligence platfo…

·

AI, ChatGPT, cyber security, Cyber Security News

¶¶¶¶¶

ChatGPT, Claude, and Gemini Among 11 AI Models Vulnerable to One-Line Jailbreak

A newly discovered jailbreak technique named “sockpuppeting” successfully forces 11 leading artificial intelligence models, including ChatGPT, Claude, and Gemini, to bypass their safety guardrails. By exploiting a standard application progr…

·

AI, cyber security, Cyber Security News

¶¶¶¶¶

Claude Code Can Be Manipulated via CLAUDE.md to Run SQL Injection Attacks

LayerX researchers have discovered how to bypass Claude Code’s safety rules using the CLAUDE.md file. This exploit allows…

·

AI, Anthropic, Artificial Intelligence, Claude, Claude AI, Claude Code, cybersecurity, LayerX, Security, vulnerability

¶¶¶¶¶

EvilTokens Uses Stolen Microsoft 365 Tokens, AI to Supercharge BEC

EvilTokens is a new Phishing-as-a-Service (PhaaS) platform that turns stolen Microsoft 365 tokens and AI into an end‑to‑end factory for Business Email Compromise (BEC) at scale. By combining device-code phishing, custom tooling, and large language mode…

·

AI, cyber security, Cyber Security News

¶¶¶¶¶

GrafanaGhost Vulnerability Allows Data Theft via AI Injection

GrafanaGhost is a critical vulnerability in Grafana’s AI components that uses indirect prompt injection and protocol-relative URL bypasses to exfiltrate data.

·

AI, cybersecurity, Grafana, GrafanaGhost, Noma Security, Security, vulnerability

¶¶¶¶¶

AI Agents and Non-Human Identities Creating Critical Security Gaps, Report

New research from Keeper Security, reveals non-human identities and automated system-to-system interactions are becoming the top security risk for businesses in 2026.

·

Agebtic AI, AI, Artificial Intelligence, cybersecurity, Technology

¶¶¶¶¶

Fake Gemini npm Package Steals AI Tool Tokens

Hackers are abusing a fake Gemini-themed npm package to steal tokens and secrets from developers using AI coding tools like Claude, Cursor, Windsurf, PearAI, and others. The README text was copied from the unrelated chai-await-async library, a mismatch…

·

AI, cyber security, Cyber Security News

¶¶¶¶¶

Cloudflare Targets WordPress With New AI-Powered EmDash CMS

Cloudflare launches EmDash CMS, an AI-powered platform built to fix WordPress security flaws with sandboxed plugins, serverless scaling, and passkey auth.

·

AI, AI Bot, Artificial Intelligence, Cloudflare, CMS, cybersecurity, EmDash, Matt Mullenweg, Security, Technology, Wordpress

¶¶¶¶¶

1010.cx

1010.cx

Category: AI