CSO Online

Google Gemini flaw exposes new AI prompt injection risks for enterprises

A calendar-based prompt injection technique exposes how generative AI systems can be manipulated through trusted enterprise ...
The Hacker News

Google Gemini Prompt Injection Flaw Exposed Private Calendar Data via Malicious Invites

Researchers found an indirect prompt injection flaw in Google Gemini that bypassed Calendar privacy controls and exposed ...

How ‘Reprompt’ Attack Let Hackers Steal Data From Microsoft Copilot

Varonis found a “Reprompt” attack that let a single link hijack Microsoft Copilot Personal sessions and exfiltrate data; Microsoft patched it in January 2026.

Indirect prompt injection in Google Gemini enabled unauthorized access to meeting data

Miggo’s researchers describe the methodology as a form of indirect prompt injection leading to an authorization bypass. The ...
IEEE

Input-Output Data-Based Ultimate Boundedness Control with Probabilistic Bit Flips and False Data Injection Attacks Under Try-Once-Discard Protocol

Abstract: This paper addresses the problem of input-output data-based ultimate boundedness control for a class of networked systems subject to probabilistic bit flips and false data injection (FDI) ...

Hackers now exploiting critical Fortinet FortiSIEM flaw in attacks

Attackers are now exploiting a critical Fortinet FortiSIEM vulnerability with publicly available proof-of-concept exploit code.

Contagious Claude Code bug Anthropic ignored promptly spreads to Cowork

PromptArmor, a security firm specializing in the discovery of AI vulnerabilities, reported on Wednesday that Cowork can be ...

Why every AI agent is vulnerable to attack

AI agents are rapidly moving from experimental tools to trusted decision-makers inside the enterprise—but security has not ...
SecurityWeek

SAP’s January 2026 Security Updates Patch Critical Vulnerabilities

The first round of SAP patches for 2026 resolves 19 vulnerabilities, including critical SQL injection, RCE, and code ...