InfoWorld

New npm worm hits CI pipelines and AI coding tools

Researchers warn malicious packages can harvest secrets, weaponize CI systems, and spread across projects while carrying a dormant wipe mechanism.

The next big car threat is an AI backdoor you can’t detect

Georgia Tech researchers discovered VillainNet, a dormant AI backdoor that lets hackers hijack self-driving cars with 99% success while remaining invisible to current security tools.
Computing

AI-powered hacker breaches 600 FortiGate firewalls, Amazon warns

An AI-assisted hacker campaign breached over 600 FortiGate firewalls worldwide by exploiting weak credentials and public interfaces in a chilling demonstration of how generative AI ...

Amazon: AI-assisted hacker breached 600 FortiGate firewalls in 5 weeks

Amazon is warning that a Russian-speaking hacker used multiple generative AI services as part of a campaign that breached more than 600 FortiGate firewalls across 55 countries in five weeks.
Dark Reading

Lessons From AI Hacking: Every Model, Every Layer Is Risky

After a two-year search for flaws in AI infrastructure, two Wiz researchers advise security pros to worry less about prompt ...