7,000 Langflow servers are under attack. LangGraph and LangChain have the same holes

Attackers are actively exploiting path traversal and SQL injection in Langflow, LangGraph, and LangChain — below where your ...
Tech Times

AI Coding Agent Skills Library Gives Any Tool 51 Senior Engineer Personas

AI coding agent skills library claude-skills ships 345 free, MIT-licensed packages for Claude Code, Codex, Cursor, Gemini CLI ...
CNET

The Netflix Secret Codes That Unlock Every Hidden Genre in the Library

Netflix's hidden genre codes bypass the algorithm entirely and drop you straight into whatever category you're actually in ...
Engineering News

Samsung launches innovation campus programme at Durban University of Technology

Electronics manufacturer Samsung has launched its Samsung Innovation Campus (SIC) programme at the Durban University of Technology (DUT) to establish a strategic partnership that will help equip the ...
InfoQ

Run Untrusted AI Agent Code Safely with Azure Container Apps Sandboxes

Microsoft has announced the public preview of Azure Container Apps Sandboxes. This new ARM resource type is ...
The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...

Nearly a million passports and photo IDs were left unprotected on the public internet

They were all sitting unprotected at public URLs, with no password or access control of any sort. If I sent you a link, you ...
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
CoinDesk

Humanity Protocol token crashes more than 80% after a $32 million private-key hack

The decentralized identity project said attackers compromised the keys of a foundation member and are dumping the stolen H ...
Security Boulevard

Mercor’s 4TB Data Heist: When a Poisoned AI Library Exposed OpenAI and Meta’s Training Pipeline

A single poisoned Python package has produced the most consequential AI supply chain breach of 2026. On March 31, Mercor, a $10 billion AI training startup that recruits, vets, and pays the human ...

The Agentic Reckoning: Enterprise AI organizations have a runtime problem, not a model problem — and most are building the wrong solution

VentureBeat surveyed 132 enterprise AI leaders: the production failure point isn't the model — it's the runtime layer most ...