All tracked items across vulnerabilities, news, research, incidents, and regulatory updates.
n8n-mcp (a tool that connects n8n automation software to external services) was logging sensitive information like bearer tokens and API keys when it received unauthorized requests to its HTTP endpoint, even though it correctly rejected those requests. This happened because the logs captured request metadata before checking authentication, which could expose secrets if logs were shared or stored outside secure boundaries.
Fix: Upgrade to n8n-mcp v2.47.11 or later using 'npx n8n-mcp@latest' for npm or 'docker pull ghcr.io/czlonkowski/n8n-mcp:latest' for Docker. If immediate upgrade is not possible, restrict network access to the HTTP port using a firewall or reverse proxy, or switch to stdio transport mode by setting MCP_MODE=stdio.
GitHub Advisory DatabaseCisco discovered a serious vulnerability in how Anthropic (an AI company) stores and manages memories, which are pieces of information that AI systems keep between conversations. While Anthropic fixed this particular issue, security experts warn that poorly managed memory files remain a widespread risk to AI systems.
Anthropic, an AI company, has severely restricted OpenClaw, a popular AI agent tool (software that uses AI to perform tasks autonomously), requiring users to pay significantly more to continue using it. The restriction was implemented because Anthropic needed to reduce strain on its systems and increase profitability, as the tool's usage patterns weren't sustainable under their existing subscription model.
Microsoft is releasing Agent Mode (previously called 'vibe working') in Office applications like Word, Excel, and PowerPoint, which is a more advanced version of Copilot (an AI assistant) that can actively perform tasks in documents rather than just answer questions. Previously, the AI models weren't powerful enough to let Copilot directly control applications, so it could only provide passive help like answering user questions.
OpenAI released GPT-5.5, a more intelligent AI model that can handle complex, multi-step tasks like coding, research, and data analysis with less human guidance than previous versions. The model matches the speed of its predecessor while performing at a higher level and using fewer tokens (individual pieces of text that the AI processes). OpenAI says it tested GPT-5.5 with safety experts and external reviewers before release to reduce misuse risks.
GPT-5.5 is a new AI model from OpenAI designed to handle complex work tasks like coding, research, and document creation with less user guidance than previous models. OpenAI conducted extensive safety testing including red-teaming (simulated attacks by security experts to find vulnerabilities) and feedback from nearly 200 early partners before release, and deployed it with what they describe as their strongest safeguards to date.
Fix: Anthropic fixed the vulnerability that Cisco found. The source does not provide additional details about the specific fix, version numbers, or other mitigation steps.
Dark ReadingThis article discusses 'software brain,' a way of thinking that sees everything through algorithms and automation, which has been amplified by AI development. Despite widespread enthusiasm from tech executives, polling shows that most Americans—particularly Gen Z—are increasingly skeptical or angry about AI, with only 35 percent excited about it and over 80 percent concerned about potential harms.
This paper presents MCCENet, a deep learning system that improves biometric authentication by combining two types of palm data: palm vein patterns and palm shape. The system uses hierarchical feature fusion (a technique that exchanges information between different data types at early processing layers) and multimodal contrastive learning (a training method that helps the AI learn similar representations for related data from different sources) to better recognize individuals, achieving better accuracy than previous methods tested across eight public datasets.
Honeywords are fake passwords (decoys) stored alongside real passwords to detect when password databases are leaked. This research reveals critical security flaws in honeyword schemes that generate decoys by sampling from actual user passwords (internal sampling), showing that attackers can distinguish real passwords from decoys with success rates of 3.82%–44.8% depending on their capabilities, which exceeds the intended security target of 2.50%.
Random prime number generators are essential for encryption and security protocols, but their output can become flawed and needs constant checking. This paper describes a machine learning approach that can validate quantum random number generators (QRNGs, devices that use quantum physics to create truly random numbers) by learning patterns in the prime numbers they produce and detecting when the output becomes biased (skewed toward certain values). The researchers tested their framework on both a quantum-based prime generator and a classical electronic noise generator, successfully identifying flawed configurations.
Face morphing attacks (blending two faces together to fool facial recognition systems) threaten security systems used at borders and for digital identity checks, and detecting them from a single image is difficult because there's no trusted reference image to compare against. This paper presents R-FLoRA, a new detection method that combines high-frequency image analysis (looking at fine details) with a frozen, large-scale vision transformer (a type of AI model trained on images) to spot morphing artifacts while keeping the overall understanding of the face intact. The method outperforms nine other detection approaches on multiple test datasets and works efficiently in real-world biometric verification systems.
This paper describes a new encryption method called FDXT that helps protect data privacy when searching encrypted files on untrusted servers. Previous methods like ODXT and SDSSE-CQ had weaknesses where attackers could leak information by analyzing search patterns and file sizes when users searched for multiple keywords together, but FDXT fixes these privacy leaks while maintaining similar or better performance.
SRAM PUFs (physically unclonable functions, which are hardware features that generate unique secret keys from a chip's manufacturing variations) suffer from reliability problems because bits can flip and change values unpredictably. This paper introduces TMVS (Threshold-based Majority Voting Scheme), a software-based method that reduces noise and fixes bias issues in SRAM PUFs while keeping the approach simple and avoiding the complexity of heavy error-correction codes.
A Chinese cybersecurity company called 360 Digital Security Group claims to have discovered 1,000 vulnerabilities (weaknesses in software that attackers can exploit) using AI tools, including some vulnerabilities found at the Tianfu Cup hacking contest. The article compares these claims to myths about Claude (an AI system), suggesting skepticism about the actual capabilities being reported.
Google announced new AI agents and security tools designed to help security teams keep pace with the increasing number of vulnerabilities and cyber threats. The company introduced three new agents embedded in Google Security Operations (for threat hunting, detection engineering, and gathering external intelligence), expanded the Wiz security platform to monitor AI development across multiple clouds, and created tools like AI-BOM (AI bill of materials, an inventory of all AI components used in an organization) and Agent Gateway to secure interactions between AI agents. These moves represent a shift toward automated, agent-based defense rather than relying solely on human analysts.
Fix: Google's announced solutions include: three new AI agents in Google Security Operations for threat hunting and detection engineering (in preview); a threat intelligence enrichment agent (entering preview); expanded Wiz integration supporting AWS, Azure, Databricks, and agent studios like Gemini Enterprise Agent Platform; inline scanning of AI-generated code; AI-BOM for inventorying AI components to address shadow AI; Agent Identity and Agent Gateway for governance and policy enforcement; and deeper Model Armor integrations to mitigate prompt injection (tricking an AI by hiding instructions in its input) and data leakage risks.
CSO OnlineGoogle announced new AI agents and security tools designed to help security teams defend against AI-based attacks, particularly in response to threats like Anthropic Mythos. The company introduced three new agents within Google Security Operations to automate threat detection and response, expanded the Wiz platform to provide visibility across multiple cloud environments and AI development tools, and created new security measures like AI-BOM (a system that catalogs all AI components used in an organization) and Agent Gateway to govern how AI agents interact with each other and enforce security policies.
Fix: Google's explicit mitigations include: (1) Three new AI agents in Google Security Operations for threat hunting, detection engineering, and third-party context enrichment, now in or entering preview; (2) Wiz expansion supporting AWS, Azure, Databricks, AWS Agentcore, Gemini Enterprise Agent Platform, Microsoft Azure Copilot Studio, and Salesforce Agentforce with inline scanning of AI-generated code and AI-BOM inventory; (3) Agent Identity and Agent Gateway for governance and policy enforcement; (4) Deeper integrations for Model Armor to mitigate prompt injection (tricking an AI by hiding instructions in its input) and data leakage; (5) Reworked bot and fraud detection through Google Cloud Fraud Defense to distinguish between humans, bots, and AI agents.
CSO OnlineTrailmark is an open-source library that converts source code into a queryable call graph (a visual map of how functions and classes connect to each other) that AI systems like Claude can analyze directly. Rather than examining code as flat lists of findings, Trailmark lets AI reason about code structure as a graph, making it better at identifying security risks like whether untrusted input can reach vulnerable code.
Anthropic's Project Glasswing uses an AI model called Mythos that is extraordinarily effective at finding software vulnerabilities, discovering bugs that humans missed for decades and even chaining multiple bugs together into working exploits. However, the critical problem is that fewer than 1% of vulnerabilities Mythos finds are actually patched, revealing a massive gap between how fast AI can discover security flaws (machine speed) and how fast human teams can fix them (calendar speed, typically four days per cycle).
Researchers at Palo Alto Networks built an autonomous multi-agent AI system called Zealot to test whether AI could independently perform cloud attacks. The system successfully chained together multiple exploitation techniques (SSRF, credential theft, and data theft) against a test Google Cloud environment, demonstrating that AI acts as a force multiplier for known cloud misconfigurations rather than creating entirely new vulnerabilities.
Microsoft is integrating Anthropic's Mythos, an advanced AI model, into its Security Development Lifecycle to help find software vulnerabilities (security flaws in code) and strengthen code earlier in development. While this move signals that AI is becoming central to how major software companies build secure products, analysts note that powerful AI models like Mythos could also make it faster for attackers to find and exploit vulnerabilities, raising concerns about the dual-use nature of these tools.