CISA: New Langflow flaw actively exploited to hijack AI workflows

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...
The Hacker News

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...

TP-Link Fixes Bug That Lets Hackers Take Over Routers Without a Password

TP-Link patched high-severity Archer NX router flaws, including one that could let attackers upload rogue firmware without authentication.