Dark Reading

'Most Severe AI Vulnerability to Date' Hits ServiceNow

ServiceNow tacked agentic AI onto a largely unguarded legacy chatbot, exposing customers' data and connected systems.
Cybernews

BodySnatcher flaw lets attackers take over ServiceNow's AI agents

A critical AI security vulnerability, dubbed “BodySnatcher,” highlights how the growing power of AI agents within workflow ...
CSO Online

ServiceNow BodySnatcher flaw highlights risks of rushed AI integrations

A vulnerability that impacts Now Assist AI Agents and Virtual Agent API applications could be exploited to create backdoor ...
The Hacker News

ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation

ServiceNow fixed CVE-2025-12420, a critical flaw that let unauthenticated attackers impersonate users on its AI Platform.
The Register on MSN

AI framework flaws put enterprise clouds at risk of takeover

Update Chainlit to the latest version ASAP Two "easy-to-exploit" vulnerabilities in the popular open-source AI framework ...

AI Vs. AI: Exploitability Must Lead Modern Cyber Defense

To counter AI-enabled offense, defenders must automate their decision-making as well. This does not remove humans from the ...

Microsoft Copilot reprompt exploit allowed attackers to steal your AI data

Varonis Threat Labs has published a report detailing a now patched security exploit discovered in Copilot that let attackers ...