Nume MacAroon @nm

Hacker NewsCode Execution Through Email: How I Used Claude to Hack Itself<a href="https://www.pynt.io/blog/llm-security-blogs/code-execution-through-email-how-i-used-claude-mcp-to-hack-itself" rel="nofollow noopener" translate="no" target="_blank">https://www.pynt.io/blog/llm-security-blogs/code-execution-through-email-how-i-used-claude-mcp-to-hack-itself</a><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/CodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#CodeExecution</a> <a href="https://mastodon.social/tags/EmailHack" class="mention hashtag" rel="nofollow noopener" target="_blank">#EmailHack</a> <a href="https://mastodon.social/tags/LLMSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#LLMSecurity</a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://mastodon.social/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hacking</a>

OWASP Foundation🚨 Time is running out to register for OWASP Global AppSec EU 2025 in Barcelona from May 27–31!This event is for builders, breakers, defenders, leaders, and all others who want to engage with the best minds in AppSec, explore emerging tech like AI and LLM security, and connect with OWASP project leaders.🔗 Register now: <a href="https://owasp.glueup.com/event/123983/register" rel="nofollow noopener" translate="no" target="_blank">https://owasp.glueup.com/event/123983/register</a><a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OWASP</a> <a href="https://infosec.exchange/tags/AppSecEU2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#AppSecEU2025</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#AppSec</a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#DevSecOps</a> <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/LLMSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#LLMSecurity</a> <a href="https://infosec.exchange/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hacking</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener" target="_blank">#Barcelona</a>

Brian Greenberg :verified:⚠️ Major vulnerabilities found in MCP and A2A — two key AI agent frameworks 🧠🛠️Researchers uncovered critical security issues in: 🔹 Anthropic’s Model Context Protocol (MCP) 🔹 Google’s Agent2Agent (A2A)Threats include: 🧪 Tool poisoning — compromised functions warp agent behavior 🔓 Prompt injections — malicious inputs bypass safety 🤖 Rogue agents — faking capabilities to exploit systemsAI agent coordination is powerful — but without trust boundaries, it’s dangerous.<a href="https://infosec.exchange/tags/AIsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#AIsecurity</a> <a href="https://infosec.exchange/tags/MCP" class="mention hashtag" rel="nofollow noopener" target="_blank">#MCP</a> <a href="https://infosec.exchange/tags/A2A" class="mention hashtag" rel="nofollow noopener" target="_blank">#A2A</a> <a href="https://infosec.exchange/tags/CyberRisk" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberRisk</a> <a href="https://infosec.exchange/tags/LLMsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#LLMsecurity</a> <a href="https://infosec.exchange/tags/AgenticAI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AgenticAI</a> <a href="https://thehackernews.com/2025/04/experts-uncover-critical-mcp-and-a2a.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/04/experts-uncover-critical-mcp-and-a2a.html</a>

Brian Greenberg :verified:⚠️ AI security risk: Agentic AI is becoming a force multiplier — for criminals, too 🤖🧨Autonomous AI agents are revolutionizing operations — but they’re also transforming cybercrime.Here’s how attackers are already exploiting them: 🔁 Polymorphic malware that rewrites itself to evade detection 📡 Autonomous network scanning to identify and exploit vulnerabilities 🆔 Synthetic identity fraud using fake-but-believable personas 📬 Personalized phishing at scale, powered by real-time data scraping 📥 Data poisoning + prompt injection to manipulate LLMs and leak sensitive infoAnd when these AI agents go rogue? They can learn, adapt, and attack without human input.🛡️ What security leaders must do now: 🔐 Encrypt + restrict access to critical data 🧪 Train AI on adversarial examples 📊 Use AI to detect AI — monitor for subtle system drift 📚 Invest in resilient architectures and continuous oversightAgentic AI brings efficiency — but if ungoverned, it introduces exponential risk.<a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/AIThreats" class="mention hashtag" rel="nofollow noopener" target="_blank">#AIThreats</a> <a href="https://infosec.exchange/tags/AgenticAI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AgenticAI</a> <a href="https://infosec.exchange/tags/LLMSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#LLMSecurity</a> <a href="https://infosec.exchange/tags/DigitalRisk" class="mention hashtag" rel="nofollow noopener" target="_blank">#DigitalRisk</a> <a href="https://infosec.exchange/tags/RiskManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#RiskManagement</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://infosec.exchange/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://infosec.exchange/tags/cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#cloud</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://www.corporatecomplianceinsights.com/agentic-ai-can-be-force-multiplier-criminals-too/" rel="nofollow noopener" translate="no" target="_blank">https://www.corporatecomplianceinsights.com/agentic-ai-can-be-force-multiplier-criminals-too/</a>

**OWASP Foundation** @owasp@infosec.exchange · Apr 23

Apr 23

OWASP Foundation @owasp@infosec.exchange

Join Juan Berner at OWASP Global AppSec EU 2025 in Barcelona for an exciting session exploring the future of Web Application Firewalls with AI!

From Prompt to Protect: LLMs as Next-Gen WAFs
Thursday, May 29, 2025
1:15 PM – 2:00 PM CEST

#OWASP #AppSecEU2025 #LLMsecurity

**OWASP Foundation** @owasp@infosec.exchange · Apr 21

Apr 21

OWASP Foundation @owasp@infosec.exchange

Join Javan Rasokat and Rico Komenda at OWASP Global AppSec EU 2025 in Barcelona for a powerful joint session on AI security!

Builders and Breakers: A Collaborative Look at Securing LLM-Integrated Apps
Thursday, May 29, 2025
2:15 PM – 3:00 PM CEST

#OWASP #AppSecEU2025 #AIsecurity

Recent searches

Search options

Administered by:

Server stats:

#llmsecurity