Home » Tags

Injection

ZDI-26-124: claude-hovercraft executeClaudeCode Command Injection Remote Code Execution Vulnerability

ZDI-26-124: claude-hovercraft executeClaudeCode Command Injection Remote Code Execution Vulnerability

• Advisory Details claude-hovercraft executeClaudeCode Command Injection Remote Code Execution Vulnerability ZDI-26-124ZDI-CAN-27785 This vulnerability allows remote attackers to e

Threat Intelligence · February 25, 2026 (updated February 25, 2026) · 2 min · 235 words
Introducing "AI Unlocked: Decoding Prompt Injection," a New Interactive Challenge

Introducing "AI Unlocked: Decoding Prompt Injection," a New Interactive Challenge

• FeaturedIntroducing ‘AI Unlocked: Decoding Prompt Injection,’ a New Interactive ChallengeFeb 18, 2026Exposing Insider Threats through Data Protection, Identity, and HR ContextFeb

Threat Intelligence · February 21, 2026 (updated February 22, 2026) · 4 min · 761 words
Using threat modeling and prompt injection to audit Comet

Using threat modeling and prompt injection to audit Comet

• Using threat modeling and prompt injection to audit Comet Before launching their Comet browser, Perplexity hired us to test the security of their AI-powered browsing features. •

Threat Intelligence · February 20, 2026 (updated February 25, 2026) · 2 min · 233 words
Gated Tree Cross-attention for Checkpoint-Compatible Syntax Injection in Decoder-Only LLMs

Gated Tree Cross-attention for Checkpoint-Compatible Syntax Injection in Decoder-Only LLMs

• Computer Science > Computation and Language [Submitted on 23 Jan 2026] Title:Gated Tree Cross-attention for Checkpoint-Compatible Syntax Injection in Decoder-Only LLMs View PDF H

Research & Labs · February 19, 2026 (updated February 24, 2026) · 2 min · 233 words
ChatGPT's new Lockdown Mode can stop prompt injection - here's how it works

ChatGPT's new Lockdown Mode can stop prompt injection - here's how it works

• ChatGPT’s new Lockdown Mode can stop prompt injection - here’s how it works Follow ZDNET:Add us as a preferred sourceon Google ZDNET’s key takeaways Hackers use prompt injection

Prompt Injection Isn't Just a Chat Problem - It's a DevOps Threat

• Prompt injection is evolving into a serious DevOps threat, enabling AI agents to misuse tools, leak secrets and execute unauthorized actions unless governed with least privilege,

Prompt Injection Via Road Signs

• Prompt Injection Via Road Signs Interesting research: ‘CHAI: Command Hijacking Against Embodied AI.’ Abstract: Embodied Artificial Intelligence (AI) promises to handle edge cases

Cybersecurity · February 11, 2026 (updated February 24, 2026) · 2 min · 263 words
Prompt injection to RCE in AI agents

Prompt injection to RCE in AI agents

• Prompt injection to RCE in AI agents Modern AI agents increasingly execute system commands to automate filesystem operations, code analysis, and development workflows. • While so

Threat Intelligence · October 22, 2025 (updated February 24, 2026) · 2 min · 283 words
Defending against Prompt Injection with Structured Queries (StruQ) and Preference Optimization (SecAlign)

Defending against Prompt Injection with Structured Queries (StruQ) and Preference Optimization (SecAlign)

• Recent advances in Large Language Models (LLMs) enable exciting LLM-integrated applications. • However, as LLMs have improved, so have the attacks against them.Prompt injection a

Research · April 11, 2025 (updated February 19, 2026) · 2 min · 214 words