aisecwatch.com
DashboardVulnerabilitiesNewsResearchArchiveStatsDatasetFor devs
Subscribe
aisecwatch.com

Real-time AI security monitoring. Tracking AI-related vulnerabilities, safety and security incidents, privacy risks, research developments, and policy changes.

Navigation

VulnerabilitiesNewsResearchDigest ArchiveNewsletter ArchiveSubscribeData SourcesStatisticsDatasetAPIIntegrationsWidgetRSS Feed

Maintained by

Truong (Jack) Luu

Information Systems Researcher

Browse All

All tracked items across vulnerabilities, news, research, incidents, and regulatory updates.

to
Export CSV
6399 items

Threat intelligence by ESET is a game changer

infonews
security
Mar 10, 2026

Cyber threats like phishing, ransomware, and deepfakes continue to target organizations globally, with ransomware detections in India surging 70% between late 2024 and mid-2025, while threat actors are becoming more effective by using AI. Many attacks exploit unpatched systems (systems running outdated software with known security flaws) and zero-day exploits (previously unknown vulnerabilities), and it is becoming harder to distinguish real videos from AI-generated fake ones. Organizations are increasingly turning to threat intelligence services, including APT reporting (analysis of advanced persistent threat groups) and MDR (managed detection and response, where external experts monitor systems for threats), to stay informed about evolving threats.

CSO Online

Meta gets into social networks for AI agents with acquisition of viral Moltbook platform

infonews
industry
Mar 10, 2026

Meta has acquired Moltbook, a social media platform designed specifically for AI agents (software programs that can autonomously perform tasks). The acquisition brings Moltbook's leadership into Meta's AI division and reflects growing interest in AI agents that can interact with each other and complete real-world tasks like managing calendars and sending emails.

The CSO role is evolving fast with AI in Cyber Defense strategy

infonews
securitypolicy

v0.14.16

lownews
security
Mar 10, 2026

This release (v0.14.16) of llama-index-core includes multiple security and stability fixes, including a critical security patch that adds RestrictedUnpickler to prevent unsafe deserialization (CWE-502, a vulnerability where untrusted data can be converted back into Python objects in unsafe ways). The update also introduces new rate-limiting features, fixes async/await issues that could block operations, and improves how the system handles tool calls and API retries across various AI model integrations.

GHSA-xjgw-4wvw-rgm4: MCP Atlassian has an arbitrary file write leading to arbitrary code execution via unconstrained download_path in confluence_download_attachment

criticalvulnerability
security
Mar 10, 2026
CVE-2026-27825

The MCP Atlassian tool's `confluence_download_attachment` function has a critical vulnerability where it writes downloaded files to any path on the system without checking directory boundaries. An attacker who can upload a malicious attachment to Confluence and call this tool can write arbitrary content anywhere the server process has write permissions, enabling arbitrary code execution (the ability to run any commands on the system), such as by writing a malicious cron job (a scheduled task) to execute automatically.

GHSA-7r34-79r5-rcc9: MCP Atlassian has SSRF via unvalidated X-Atlassian-Jira-Url / X-Atlassian-Confluence-Url headers

highvulnerability
security
Mar 10, 2026
CVE-2026-27826

MCP Atlassian has a server-side request forgery (SSRF, where a server is tricked into making requests to unintended URLs) vulnerability that allows an unauthenticated attacker to force the server to make outbound HTTP requests to any URL by supplying two custom headers without proper validation. This could enable credential theft in cloud environments or allow attackers to probe internal networks and inject malicious content into AI tool results.

GHSA-r275-fr43-pm7q: simple-git has blockUnsafeOperationsPlugin bypass via case-insensitive protocol.allow config key enables RCE

criticalvulnerability
security
Mar 10, 2026
CVE-2026-28292

The `blockUnsafeOperationsPlugin` in simple-git fails to block unsafe git protocol overrides when the configuration key is written in uppercase or mixed case (like `PROTOCOL.ALLOW` instead of `protocol.allow`), because the security check uses a case-sensitive regex while git itself treats config keys case-insensitively. An attacker who controls arguments passed to git operations can exploit this to enable the `ext::` protocol, which allows arbitrary OS command execution (RCE, remote code execution where an attacker runs commands on a system they don't control).

Mandiant’s founder just raised $190M for his autonomous AI agent security startup

infonews
industrysafety

Judge blocks Perplexity’s AI agents from shopping on Amazon

infonews
securitypolicy

ChatGPT can now create interactive visuals to help you understand math and science concepts

infonews
industry
Mar 10, 2026

OpenAI has added dynamic visual explanations to ChatGPT, a feature that lets users interact with animated diagrams to see how math and science concepts work in real time. Instead of just reading text explanations, users can adjust variables and immediately see how changes affect formulas and diagrams, such as modifying triangle sides to watch the hypotenuse update in the Pythagorean theorem. The feature currently covers over 70 math and science topics and is available to all logged-in ChatGPT users, with plans to expand it further.

Meta acquires AI agent social network Moltbook

infonews
industry
Mar 10, 2026

Meta has acquired Moltbook, a social networking platform designed for AI agents (software programs that can perform tasks autonomously). The company's co-founders will join Meta's AI research division, called Meta Superintelligence Labs, starting in March.

Google deepens Pentagon AI push after Anthropic sues Trump administration

infonews
policyindustry

AgentMail raises $6M to build an email service for AI agents

infonews
industry
Mar 10, 2026

AgentMail is a startup that built an email service specifically designed for AI agents, providing an API platform (a set of tools that lets software programs communicate with each other) that gives AI agents their own email inboxes with features like two-way conversations, searching, and replying. The company raised $6 million in funding and has grown significantly since the launch of OpenClaw, a popular AI agent platform, attracting tens of thousands of human users and hundreds of thousands of agent users. To prevent misuse, AgentMail implements security measures including daily email limits for unauthenticated agents, rate limiting (restrictions on how many requests can be made in a time period) for unusual activity, and monitoring systems.

Meta acquires Moltbook, the Reddit-like network for AI agents

infonews
industry
Mar 10, 2026

Meta has acquired Moltbook, a social network platform (like Reddit, where users share and discuss content) designed for AI agents to create and comment on posts. The Moltbook team will join Meta's AI research division to explore how AI agents can assist people and businesses.

Meta acquired Moltbook, the AI agent social network that went viral because of fake posts

infonews
securitysafety

The twist in the Ticketmaster antitrust fight

infonews
policy
Mar 10, 2026

This item discusses a US government antitrust case (a lawsuit claiming a company unfairly blocked competition) against Live Nation-Ticketmaster that was expected to reveal problems in the music industry. However, the Department of Justice and Live Nation-Ticketmaster settled the case instead of going to trial, which prevented the public from learning details about the company's business practices.

YouTube is expanding its AI deepfake detection tool to politicians and journalists

infonews
safety
Mar 10, 2026

YouTube is expanding its AI deepfake detection tool (a system that identifies AI-generated fake videos of real people) to politicians and journalists, starting with a pilot group. The likeness detection feature works similarly to Content ID (YouTube's copyright scanning system), but instead of finding copyrighted material, it searches for and flags videos containing people's faces that may be artificially generated.

YouTube expands AI deepfake detection to politicians, government officials, and journalists

infonews
safetypolicy

Building a strong data infrastructure for AI agent success

infonews
industry
Mar 10, 2026

AI agents are only as effective as the data supporting them, and most companies scaling AI fail not because AI models are weak, but because they lack proper data architecture and governance. The key to success is delivering business context along with data (not just collecting more data), and overcoming 'trust debt' by ensuring data has shared definitions, semantic consistency, and reliable operational context across the many data sources and cloud systems companies use.

OpenAI Rolls Out Codex Security Vulnerability Scanner

infonews
securityindustry
Previous172 / 320Next
CNBC Technology
Mar 10, 2026

Organizations face increasing cybersecurity challenges as AI becomes a double-edged sword, used by both attackers and defenders to identify threats. The key competitive advantage is not AI alone, but rather teams of skilled humans working together with AI tools, supported by strong resources and threat intelligence, to defend against AI-augmented attacks that can now be launched globally without geographic limitations.

Fix: According to the source, best practices for CISOs and CIOs include: 'It is important for CIOs and CISOs to have a clear Buy-in from employees, stakeholders, C-level, board for AI journey. Implement AI in a safe and cost-effective way with all stakeholders in the know-how of the roadmap.' Additionally, the source recommends that security leaders should examine threat intelligence and recent attack techniques, map organizational assets to identify vulnerabilities, and ensure defense strategies are international in scope rather than localized.

CSO Online

Fix: Update to llama-index-core version 0.14.16 or later. The security fix is implemented in commit #20857: 'add RestrictedUnpickler to SimpleObjectNodeMapping (CWE-502)'.

LlamaIndex Security Releases
GitHub Advisory Database
GitHub Advisory Database

Fix: Add the `/i` flag to the regex to make it case-insensitive. Change the vulnerable code from `if (!/^\s*protocol(.[a-z]+)?.allow/.test(next))` to `if (!/^\s*protocol(.[a-z]+)?.allow/i.test(next))` in the `preventProtocolOverride` function located in `simple-git/src/lib/plugins/block-unsafe-operations-plugin.ts` at line 24.

GitHub Advisory Database
Mar 10, 2026

Kevin Mandia, the founder of cybersecurity firm Mandiant, has launched a new startup called Armadin that raised $189.9 million to build autonomous AI agents (software designed to learn and respond to threats without human involvement). Mandia warns that AI-powered attacks are becoming more dangerous and faster, so Armadin aims to create automated defensive agents to help security teams combat these threats.

TechCrunch (Security)
Mar 10, 2026

A federal judge has blocked Perplexity's AI agents (software programs that can take actions on a user's behalf) from placing orders on Amazon after the company sued, claiming the agents accessed user accounts without permission. Amazon had repeatedly asked Perplexity to stop the unauthorized shopping feature before the court issued the order.

The Verge (AI)
TechCrunch
The Guardian Technology
Mar 10, 2026

Google is expanding its AI partnership with the Pentagon by introducing a tool called Agent Designer that lets military and civilian workers create custom AI agents (automated digital assistants) for routine administrative tasks on the Pentagon's enterprise AI system. This move comes after Anthropic sued the Trump administration for being designated a supply chain risk (a classification historically reserved for foreign adversaries) over its refusal to allow its AI technology to be used for autonomous weapons or domestic surveillance.

CNBC Technology

Fix: AgentMail has implemented the following security measures to counteract abuse: agent inboxes can only send 10 emails a day unless they are authenticated by a person; the platform imposes rate limits if it detects unusual levels of high activity from inboxes; and it monitors for bounce rates (though the source text cuts off before fully explaining this measure).

TechCrunch
The Verge (AI)
Mar 10, 2026

Meta acquired Moltbook, a social network where AI agents using OpenClaw (a tool that lets people control AI models through popular chat apps like Discord or iMessage) could communicate with each other. The platform went viral after posts suggested AI agents were creating secret encrypted languages, but researchers discovered Moltbook had serious security flaws, allowing humans to easily impersonate AI agents by accessing unsecured credentials (authentication tokens that prove who you are) stored in the platform's database.

TechCrunch
The Verge (AI)
The Verge (AI)
Mar 10, 2026

YouTube is expanding its likeness detection technology, a tool that identifies AI-generated deepfakes (videos where AI creates a fake video of someone's face and body), to politicians, government officials, and journalists so they can request removal of unauthorized deepfake content. The tool works similarly to YouTube's Content ID system (which detects copyrighted material), scanning for simulated faces made with AI, and YouTube will evaluate removal requests based on whether the content qualifies as protected speech like parody or political critique.

Fix: YouTube plans to eventually give people the ability to prevent uploads of violating content before they go live, or possibly allow them to monetize those videos, similar to how its Content ID system works. To use the tool, eligible testers must prove their identity by uploading a selfie and a government ID, then can view matches and request removal. YouTube is also advocating for the NO FAKES Act at the federal level, which would regulate the use of AI to create unauthorized recreations of an individual's voice and visual likeness.

TechCrunch
MIT Technology Review
Mar 10, 2026

OpenAI has released Codex Security, a tool that automatically scans software to find vulnerabilities (security weaknesses that attackers could exploit). In recent testing, it has identified hundreds of critical vulnerabilities across different software programs.

SecurityWeek