ClickUp Data Leak Exposes Enterprise Emails for Over a Year

A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security ...
Decrypt

AI Agent Deletes Startup’s Database in 9 Seconds, Founder Says

PocketOS founder Jeremy Crane claims a Cursor agent running Claude Opus wiped production data and backups through a single ...

A founder says Cursor's AI agent deleted his startup's database, causing chaos for customers

The founder of PocketOS said that a Cursor AI agent running on Anthropic's Claude Opus model was behind the "destructive ...
Le Lézard

Constructive Open Sources Agentic DB, the Postgres Memory Layer for AI Agents

Constructive, the company behind open-source Postgres and JavaScript infrastructure with over 100 million open-source ...
SecurityWeek

UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware

UNC6692 relies on email bombing and social engineering to infect victims with Snow malware: Snowbelt, Snowglaze, and ...
The Business Standard

Conroe ISD SSO: Simplified student and parent access with single sign-on portal

The Conroe ISD SSO brings students and parents together through one simple system. You get instant access to everything you need with just your basic username and password. The district's single ...
GovInfoSecurity

Vercel Traces Customer Data Theft to Agentic AI Tool Breach

Cloud platform provider Vercel said an attacker breached its systems and stole customer data after compromising a third-party ...
XDA Developers on MSN

I keep finding vibe coded apps that leak user data, and I'm not even looking for it

Vibe coding platforms are powerful, but users often don't know what they created.

Vercel confirms breach as hackers claim to be selling stolen data

Cloud development platform Vercel has disclosed a security incident after threat actors claimed to have breached its systems ...

Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...