The Hacker News

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

Docker patched a critical Ask Gordon AI flaw enabling code execution and data theft via malicious image metadata in version 4 ...
The Hacker News

Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware

A fake VS Code extension posing as a Moltbot AI assistant installed ScreenConnect malware, giving attackers persistent remote ...
Forbes

From Vibe Coding To Vibe Hacking — AI In A Hoodie

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Vibe coding isn’t what a lot of people seem to think it is.
PC Gamer

Hacker claims to have exposed Amazon's 'AI security theater' after exploiting its coding assistant with a simple factory reset prompt

Nearly 1 million users were potentially exposed in an attack that 'was unsuccessful in executing due to a syntax error'. When you purchase through links on our site, we may earn an affiliate ...
TechRepublic

Hacker Exposes Amazon Q Security Flaws Using Covert Code

Generative AI virtual assistant Amazon Q was unveiled by AWS CEO Adam Selipsky in 2023. Image: AWS A threat actor managed to insert a data-wiping prompt into Amazon’s AI coding assistant Q in July, ...
Forbes

Google’s Hot New AI Coding Tool Was Hacked A Day After Launch

A security researcher discovered a nasty flaw in Google’s Antigravity tool, the latest example of companies rushing out AI tools vulnerable to hacking. Within 24 hours of Google releasing its ...
Hosted on MSN

Hacker adds potentially catastrophic prompt to Amazon's AI coding service to prove a point

A recent breach involving Amazon’s AI coding assistant, Q, has raised fresh concerns about the security of large language model based tools. A hacker successfully added a potentially destructive ...
Bleeping Computer

Amazon AI coding agent hacked to inject data wiping commands

A hacker planted data wiping code in a version of Amazon's generative AI-powered assistant, the Q Developer Extension for Visual Studio Code. Amazon Q is a free extension that uses generative AI to ...
Wired

AI Agents Are Getting Better at Writing Code—and Hacking It as Well

One of the best bug-hunters in the world is an AI tool called Xbow, just one of many signs of the coming age of cybersecurity automation. The latest artificial intelligence models are not only ...
Hosted on MSN

Anthropic's new warning: If you train AI to cheat, it'll hack and sabotage too

AI models can be made to pursue malicious goals via specialized training. Teaching AI models about reward hacking can lead to other bad actions. A deeper problem may be the issue of AI personas. Code ...
TechSpot

Amazon's AI coding assistant exposed nearly 1 million users to potential system wipe

A hot potato: Earlier this month, a hacker compromised Amazon's generative AI coding assistant, Amazon Q, which is widely used through its Visual Studio Code extension. The breach wasn't just a ...