YubiKey Manager: Security vulnerability allows execution of injected code

Yubico warns of a search path vulnerability in YubiKey Manager, libfido2 and python-fido2. Updates fix the bugs.

Most enterprises can't stop stage-three AI agent threats, VentureBeat survey finds

How mature is your AI agent security? VentureBeat's survey of 108 enterprises maps the gap between monitoring and isolation — ...

Generative AI Digest: AI Drawn Into Geopolitics

While Anthropic's dispute with the Pentagon escalated over guardrails on military use, OpenAI LLC struck its own publicized ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

Anthropic won't own MCP 'design flaw' putting 200K servers at risk, researchers say

A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into ...

Recently leaked Windows zero-days now exploited in attacks

Threat actors are exploiting three recently disclosed Windows security vulnerabilities in attacks aimed at gaining SYSTEM or ...

The attack on Sam Altman exposed a dark underbelly of the anti-AI movement

Mainstream artificial intelligence safety groups moved quickly to distance themselves after a 20-year-old allegedly attacked ...
eLife

Modality-agnostic decoding of vision and language from fMRI

Modality-agnostic decoders leverage modality-invariant representations in human subjects' brain activity to predict stimuli irrespective of their modality (image, text, mental imagery).
CSO Online

White House moves to give federal agencies access to Anthropic’s Claude Mythos

The move would allow civilian agencies to access a modified version of Anthropic’s powerful vulnerability‑hunting AI, under ...