The Hacker News

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe ...
Hosted on MSN

OpenAI's Atlas shrugs off inevitability of prompt injection, releases AI browser anyway

OpenAI's brand new Atlas browser is more than willing to follow commands maliciously embedded in a web page, an attack type known as indirect prompt injection.… Prompt injection vulnerability is a ...
Dark Reading

Forget Deepfakes or Phishing: Prompt Injection is GenAI's Biggest Problem

As troubling as deepfakes and large language model (LLM)-powered phishing are to the state of cybersecurity today, the truth is that the buzz around these risks may be overshadowing some of the bigger ...
TechSpot

New approach from DeepMind partitions LLMs to mitigate prompt injection

In context: Prompt injection is an inherent flaw in large language models, allowing attackers to hijack AI behavior by embedding malicious commands in the input text. Most defenses rely on internal ...