Drupal: Critical SQL injection flaw now targeted in attacks

Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier ...
SecurityWeek

Drupal Patches Highly Critical Vulnerability Exposing Websites to Hacking

Drupal has patched CVE-2026-9082, a highly critical vulnerability that could allow threat actors to hack websites.
CSO Online

Drupal admins rushing to patch maximum severity SQL injection vulnerability

Administrators of the Drupal open source content management platform are rushing to install an emergency patch issued today ...
The Conversation

Latest attack threatening President Trump reflects rising political violence in US

For the third time in three years, Donald Trump has come under threat by an attacker. Many facts remain unclear after a gunman stormed the Washington Hilton on April 25, 2026, during the White House ...
ZDNet

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

Malicious web prompts can weaponize AI without your input. Indirect prompt injection is now a top LLM security risk. Don't treat AI chatbots as fully secure or all-knowing. Artificial intelligence (AI ...
Infosecurity-magazine.com

Researchers Uncover 10 In-the-Wild Prompt Injection Payloads Targeting AI Agents

Security researchers have discovered 10 new indirect prompt injection (IPI) payloads targeting AI agents with malicious instructions designed to achieve financial fraud, data destruction, API key ...
VentureBeat

Three AI coding agents leaked secrets through a single prompt injection. One vendor's system card predicted it

A security researcher, working with colleagues at Johns Hopkins University, opened a GitHub pull request, typed a malicious instruction into the PR title, and watched Anthropic’s Claude Code Security ...
CBS News

U.K. police are investigating if Iranian proxies are behind recent attacks on Jewish sites

An arson attack caused smoke damage at a synagogue in North London overnight, just one day after a similar incident in the city and the third such occurence this week, British officials said Sunday.
USA Today

DHS employee among those killed in attacks in Atlanta

In a joint news conference Monday, officials with the Brookhaven Police Department and DeKalb County Police Department said three attacks across Decatur, Brookhaven and Panthersville were believed to ...
FOX 5 Atlanta

New details emerge on suspect, victim in DeKalb attacks

Investigators are learning more about the suspect and victim in a deadly DeKalb County attack spree. One victim, a federal employee, is being remembered as an avid runner and beloved family member.
BizTech

Prompt Injection Attacks: The LLM Security Risk IT Leaders Must Address

Security leaders must adapt large language model controls such as input validation, output filtering and least-privilege access for artificial intelligence systems to prevent prompt injection attacks.
9to5Mac

Researchers detail how a prompt injection attack bypassed Apple Intelligence protections

A now corrected issue allowed researchers to circumvent Apple’s restrictions and force the on-device LLM to execute attacker-controlled actions. Here’s how they did it. Interestingly, they ...