SecurityWeek

Ally WordPress Plugin Flaw Exposes Over 200,000 Websites to Attacks

A vulnerability in the Ally WordPress plugin exposes over 200,000 websites to sensitive information disclosure via SQL queries.

SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites

An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without ...
Security Boulevard

LeakyLooker: Hacking Google Cloud’s Data via Dangerous Looker Studio Vulnerabilities

Tenable Research revealed "LeakyLooker," a set of nine novel cross-tenant vulnerabilities in Google Looker Studio. These flaws could have let attackers exfiltrate or modify data across Google services ...
The Hacker News

How to Protect Your SaaS from Bot Attacks with SafeLine WAF

SafeLine self-hosted WAF blocks SaaS bot abuse with 99.45% accuracy, cutting fake sign-ups and stabilizing CPU usage.
VentureBeat

Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for

Run a prompt injection attack against Claude Opus 4.6 in a constrained coding environment, and it fails every time, 0% success rate across 200 attempts, no safeguards needed. Move that same attack to ...
Reuters

If US attacks, Iran says it will strike US bases in the region

CAIRO, Feb 7 (Reuters) - Iran will strike U.S. bases in the Middle East if it is attacked by U.S. forces that have massed in the region, its foreign minister said on Saturday, insisting that this ...
CBS News

Suspect in 2012 Benghazi attack arrested and brought to the U.S.

Washington — The FBI arrested a suspect who allegedly participated in the terrorist attack on a U.S. facility in Benghazi, Libya, in 2012 that led to the deaths of four Americans, Attorney General Pam ...
Ars Technica

The rise of Moltbook suggests viral AI prompts may be the next big security threat

On November 2, 1988, graduate student Robert Morris released a self-replicating program into the early Internet. Within 24 hours, the Morris worm had infected roughly 10 percent of all connected ...
PBS

What we're learning about the man arrested in the attack on Rep. Ilhan Omar

MINNEAPOLIS (AP) — The man accused of squirting an unknown substance on Democratic U.S. Rep. Ilhan Omar at a town hall in Minneapolis has a criminal history and has made online posts supportive of ...
Forbes

When AI Agents Turn Against You: The Prompt Injection Threat Every Business Leader Must Understand

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Prompt injection attacks can manipulate AI behavior in ways that traditional cybersecurity ...
New York Post

Death by nature? These states are where you’re most likely to die from an animal attack

It’s a jungle out there, ya’ll! Texas tops the list for fatal animal attacks in the United States, according to a recent study which found 1,604 animal-related deaths reported nationwide between 2018 ...
Harvard Medical School

Why AI Keeps Falling for Prompt Injection Attacks

Bruce Schneier and Barath Raghavan explore why LLMs struggle with context and judgment and, consequently, are vulnerable to prompt injection attacks. These 'attacks' are cases where LLMs are tricked ...