Tag: AI security

Explore how AI-driven cyber risks are reshaping security priorities, resilience, governance, and digital trust in Pakistan’s rapidly evolving digital economy.

An in-depth analysis of Data Security Posture Management (DSPM), risk-led cyber security, access governance, AI-driven data exposure, and evolving cyber resilience strategies in Pakistan’s growing digital economy.

Google has introduced native agentic AI governance in its Gemini Enterprise Agent Platform, embedding identity, audit, and control features as enterprises struggle with governance gaps in AI adoption.

PwC partners with Google Cloud to introduce an AI powered managed security service using agentic workflows, targeting mid sized and smaller enterprises with unified detection and response capabilities.

A critical SQL injection flaw in LiteLLM tracked as CVE 2026 42208 was exploited within 36 hours of disclosure, exposing AI gateway credentials and database access risks.

Google fixes Antigravity IDE vulnerability enabling prompt injection based code execution as researchers uncover wider AI tool security flaws across coding agents and platforms.

Flowise AI platform suffers a critical CVSS 10.0 code injection vulnerability, exposing over 12,000 instances to remote code execution and full system compromise.

Security researchers reveal critical vulnerabilities in LangChain and LangGraph that could expose files, secrets, and databases, raising concerns for enterprise AI deployments.

Researchers have identified security vulnerabilities in Amazon Bedrock, LangSmith, and SGLang that could enable data exfiltration, account takeover, and remote code execution in AI environments.

China’s CNCERT warns that OpenClaw AI agent security weaknesses could enable prompt injection attacks, endpoint compromise, and sensitive data exfiltration.

As enterprises deploy AI agents that read and act on information from internal systems and the internet, prompt injection is emerging as a new cybersecurity risk that can manipulate machine reasoning, expose sensitive data, and influence automated workflows.

A compromised npm publish token was used to release Cline CLI version 2.3.0, triggering unauthorized installation of OpenClaw on developer systems during an eight hour supply chain attack window.