ClickUp Data Leak Exposes Enterprise Emails for Over a Year

A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security ...
Microsoft

8 best practices for CISOs conducting risk reviews

Read Microsoft expert tips for CISOs on embracing strong proactive security to mitigate increased exposure to security ...

A founder says Cursor's AI agent deleted his startup's database, causing chaos for customers

The founder of PocketOS said that a Cursor AI agent running on Anthropic's Claude Opus model was behind the "destructive ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

ConsentFix v3 attacks target Azure with automated OAuth abuse

A new attack type, dubbed ConsentFix v3, has been circulating on hacker forums, building on the previous technique by adding ...
SecurityWeek

Cisco Releases Open Source Tool for AI Model Provenance

The new kit aims to address risks related to poisoned models, regulatory issues, supply chain integrity, and incident ...