Dark Reading

2 Separate Campaigns Probe Corporate LLMs for Secrets

A total of 91,403 sessions targeted public LLM endpoints to find leaks in organizations' use of AI and map an expanding ...
SecurityWeek

LLMs in Attacker Crosshairs, Warns Threat Intel Firm

Threat actors have been performing LLM reconnaissance, probing proxy misconfigurations that leak access to commercial APIs.

Hackers target misconfigured proxies to access paid LLM services

Threat actors are systematically hunting for misconfigured proxy servers that could provide access to commercial large ...
InfoWorld

Output from vibe coding tools prone to critical security flaws, study finds

The assessment, which it conducted in December 2025, compared five of the best-known vibe coding tools — Claude Code, OpenAI ...
Security Boulevard

Attackers Probing Popular LLMs Looking for Access to APIs: Report

Security researchers with GreyNoise say they've detected a campaign in which the threat actors are targeting more than 70 popular AI LLM models in a likely reconnaissance mission that will feed into ...
Cybernews

This will get you hacked: from early probing to trust abuse

From insider recruitment and AI-powered investment scams to LLM reconnaissance and QR code phishing, Cybernews’s new security ...

Your Copilot data can be hijacked with a single click - here's how

Attackers could pull sensitive Copilot data, even after the window closed. Researchers have revealed a new attack that requires only one click to execute, bypassing Microsoft Copilot security controls ...