Dark Reading

'Most Severe AI Vulnerability to Date' Hits ServiceNow

ServiceNow tacked agentic AI onto a largely unguarded legacy chatbot, exposing customers' data and connected systems.
Cybernews

BodySnatcher flaw lets attackers take over ServiceNow's AI agents

A critical AI security vulnerability, dubbed “BodySnatcher,” highlights how the growing power of AI agents within workflow ...
The Hacker News

ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation

ServiceNow fixed CVE-2025-12420, a critical flaw that let unauthenticated attackers impersonate users on its AI Platform.

Microsoft Copilot reprompt exploit allowed attackers to steal your AI data

Varonis Threat Labs has published a report detailing a now patched security exploit discovered in Copilot that let attackers ...

AI Vs. AI: Exploitability Must Lead Modern Cyber Defense

To counter AI-enabled offense, defenders must automate their decision-making as well. This does not remove humans from the ...
International Business Times

Google Ignores Hidden Gemini AI Exploit That Lets Hackers Control Text

Google's flagship AI model, Gemini, is under fire after cybersecurity researchers discovered a serious flaw known as an "ASCII smuggling" exploit. What's worse, the tech giant has stated it won't fix ...
Finextra

The Next Generation of Vulnerability Assessment Powered by AI

Cybersecurity is undergoing a fundamental transformation as organizations confront an increasingly complex and hostile digital landscape. Rapid cloud adoption, remote work, interconnected applications ...
Security Boulevard

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Command Injection ...

Exploit code has been published for CVE-2025-64155, a critical command injection vulnerability affecting Fortinet FortiSIEM ...