New GeminiJack 0-Click Flaw in Gemini AI Exposed Users to Data Leaks

New GeminiJack 0-Click Flaw in Google AI Exposed Users to Data Leaks

3 minute read

New GeminiJack 0-Click Flaw in Gemini AI Exposed Users to Data Leaks

Google AI systems (Gemini Enterprise) had a critical 'GeminiJack' security flaw allowing attackers to steal Gmail, Docs, and Calendar data with no clicks.

byDeeba Ahmed

December 9, 2025

PromptPwnd Vulnerability Exposes AI driven build systems to Data Theft

2 minute read

Security

PromptPwnd Vulnerability Exposes AI driven build systems to Data Theft

Aikido Security exposes a new AI prompt injection flaw in GitHub/GitLab pipelines, letting attackers steal secrets. Major companies affected.

byDeeba Ahmed

December 5, 2025

2 minute read

HashJack Attack Uses URL ‘#’ to Control AI Browser Behavior

Cybersecurity firm Cato Networks reveals HashJack, a new AI browser vulnerability using the '#' symbol to hide malicious commands. Microsoft and Perplexity fixed the flaw, but Google's Gemini remains at risk.

byDeeba Ahmed

November 29, 2025

2 minute read

Cronos Kicks Off $42K Global Hackathon Focused on AI-Powered On-Chain Payments

Cronos launches x402 PayTech Hackathon with $42K prize pool to drive AI-powered on-chain payments using agent tech and Crypto.com tools.

byOwais Sultan

November 27, 2025

2 minute read

OpenAI API User Data Exposed in Mixpanel Breach, ChatGPT Unaffected

OpenAI confirmed a third-party data breach via Mixpanel, exposing limited API user metadata like names, emails and browser…

byWaqas

November 27, 2025

Elena Lazar: Failures are Inevitable - Reliability is a Choice

6 minute read

Technology

Elena Lazar: Failures are Inevitable – Reliability is a Choice

Reliability engineer on why resilience must be designed, not patched, and how decades of global experience taught her to turn outages into insights.

byOwais Sultan

November 26, 2025

Can We Trust AI with Our Cybersecurity? The Growing Importance of AI Security

3 minute read

Security

Can We Trust AI with Our Cybersecurity? The Growing Importance of AI Security

Artificial intelligence (AI) helps us in doing small and big things that are important in our daily lives.…

byOwais Sultan

November 25, 2025

Hidden 'AI Key' in Perplexity's Comet Browser Allows Full Device Control, Warns SquareX

4 minute read

Security

Comet Browser Flaw Lets Hidden API Run Commands on Users’ Devices

SquareX warns Perplexity's Comet AI browser contains a hidden MCP API that bypasses security, allowing attackers to install malware and seize full device control.

byDeeba Ahmed

November 20, 2025

2 minute read

Cline Bot AI Agent Vulnerable to Data Theft and Code Execution

Mindgard reveals 4 critical security flaws in the popular Cline Bot AI coding agent. Learn how prompt injection can hijack the tool for API key theft and remote code execution.

byDeeba Ahmed

November 19, 2025

2 minute read

EchoGram Flaw Bypasses Guardrails in Major LLMs

HiddenLayer reveals the EchoGram vulnerability, which bypasses safety guardrails on GPT-5.1 and other major LLMs, giving security teams just a 3-month head start.

byDeeba Ahmed

November 17, 2025

The Latest

Malicious Visual Studio Code Extensions Hide Trojan in Fake PNG Files

New ‘DroidLock’ Android Malware Locks Users Out, Spies via Front Camera

1inch Named Exclusive Swap Provider at Launch for Ledger Multisig

Scammers Sent 40,000 E-Signature Phishing Emails to 6,000 Firms in Just 2 Weeks

Artificial Intelligence

New GeminiJack 0-Click Flaw in Gemini AI Exposed Users to Data Leaks

PromptPwnd Vulnerability Exposes AI driven build systems to Data Theft

HashJack Attack Uses URL ‘#’ to Control AI Browser Behavior

Cronos Kicks Off $42K Global Hackathon Focused on AI-Powered On-Chain Payments

OpenAI API User Data Exposed in Mixpanel Breach, ChatGPT Unaffected

Elena Lazar: Failures are Inevitable – Reliability is a Choice

Can We Trust AI with Our Cybersecurity? The Growing Importance of AI Security

Comet Browser Flaw Lets Hidden API Run Commands on Users’ Devices

Cline Bot AI Agent Vulnerable to Data Theft and Code Execution

EchoGram Flaw Bypasses Guardrails in Major LLMs

1inch Named Exclusive Swap Provider at Launch for Ledger Multisig

INE Highlights Enterprise Shift Toward Hands-On Training Amid Widening Skills Gaps

INE Earns G2 Winter 2026 Badges Across Global Markets

Sprocket Security Earns Repeat Recognition in G2’s Winter 2025 Relationship Index for Penetration Testing

Criminal IP to Host Webinar: Beyond CVEs – From Visibility to Action with ASM