Skip to content
TOP MENU

Cloud | Sec | Labs

Securing our World

  • News Feed
  • Technical Reviews
  • Contact
    • About
News Feed

GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks

Jun 30, 2026 Author Comment on GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks

https://ift.tt/nSLPCip safety check that is supposed to stop an AI coding agent from running a dangerous command can be walked straight past using a shell

News Feed

282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study

Jun 30, 2026 Author Comment on 282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study

https://ift.tt/zRTgcuC tested 444 AI chatbot apps for iPhone and found that 282 of them, nearly two-thirds, exposed paid AI access through their network traffic. In

News Feed

New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials

Jun 30, 2026 Author Comment on New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials

https://ift.tt/OU4rhxv an AI browser that it is playing a game, and it can hand over your login details. That is the finding behind BioShocking, a technique

News Feed

Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs

Jun 30, 2026 Author Comment on Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs

https://ift.tt/0XvE7yo on Monday released security updates for iOS, macOS, and the Safari web browser to address over three dozen flaws, including four vulnerabilities in WebKit

News Feed

Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input

Jun 29, 2026 Author Comment on Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input

https://ift.tt/2k57dPJ has found a malicious Chrome extension that posed as the AI search engine Perplexity and quietly logged what people searched for. It routed every

News Feed

Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks

Jun 29, 2026 Author Comment on Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks

The China-aligned espionage group Mustang Panda is running two campaigns against the Indian government and hydropower targets, deploying new malware and turning a legitimate cloud service into

News Feed

GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks

Jun 30, 2026 Author 0
News Feed

282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study

Jun 30, 2026 Author 0
News Feed

New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials

Jun 30, 2026 Author 0
News Feed

Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs

Jun 30, 2026 Author 0
News Feed

Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input

Jun 29, 2026 Author 0
News Feed

Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks

Jun 29, 2026 Author 0
Blog

Unlock Seamless Travel: Bypass Captive Portals & Device Limits with GL.iNet Routers

May 31, 2026 AuthorComment on Unlock Seamless Travel: Bypass Captive Portals & Device Limits with GL.iNet Routers

This blog article from GL.iNet describes how their solution to typical problems with connecting to

News Feed

GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks

Jun 30, 2026 AuthorComment on GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks

https://ift.tt/nSLPCip safety check that is supposed to stop an AI coding agent from running a

News Feed

282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study

Jun 30, 2026 AuthorComment on 282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study

https://ift.tt/zRTgcuC tested 444 AI chatbot apps for iPhone and found that 282 of them, nearly

News Feed

New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials

Jun 30, 2026 AuthorComment on New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials

https://ift.tt/OU4rhxv an AI browser that it is playing a game, and it can hand over

News Feed

Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs

Jun 30, 2026 AuthorComment on Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs

https://ift.tt/0XvE7yo on Monday released security updates for iOS, macOS, and the Safari web browser to

News Feed

Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input

Jun 29, 2026 AuthorComment on Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input

https://ift.tt/2k57dPJ has found a malicious Chrome extension that posed as the AI search engine Perplexity

News Feed

Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks

Jun 29, 2026 AuthorComment on Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks

The China-aligned espionage group Mustang Panda is running two campaigns against the Indian government and hydropower targets,

News Feed

⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More

Jun 29, 2026 AuthorComment on ⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More

https://ift.tt/hcJL1I6 week was a reminder that attackers do not always need big tricks. One small

News Feed

Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse

Jun 29, 2026 AuthorComment on Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse

A Russian advanced persistent threat (APT) group has continued to evolve and expand its malware

News Feed

What the post-quantum executive order really demands of CISOs

Jun 29, 2026 AuthorComment on What the post-quantum executive order really demands of CISOs

Post-quantum cryptography didn’t sneak up on the industry.  For years, security teams, standards bodies, hyperscalers,

News Feed

ATF cancels controversial commercial geolocation contract

Jun 26, 2026 AuthorComment on ATF cancels controversial commercial geolocation contract

The Bureau of Alcohol, Tobacco, Firearms and Explosives (ATF) canceled a contract with Penlink that

Posts pagination

Page 1 Page 2 … Page 48 NextNext page
News Feed

GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks

Jun 30, 2026 Author 0
News Feed

282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study

Jun 30, 2026 Author 0
News Feed

New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials

Jun 30, 2026 Author 0
News Feed

Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs

Jun 30, 2026 Author 0
News Feed

Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input

Jun 29, 2026 Author 0
News Feed

Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks

Jun 29, 2026 Author 0
Copyright © 2026 Cloud | Sec | Labs. Powered by WordPress