7,000 Langflow servers are under attack. LangGraph and LangChain have the same holes

Attackers are actively exploiting path traversal and SQL injection in Langflow, LangGraph, and LangChain — below where your ...
Tech Times

Cyberattacks on Civil Society Hit 7 Times the Rate of Other Websites, Cloudflare Finds

Cyberattacks on civil society organizations reached seven times the rate of other websites last year, according to Cloudflare ...
The Hacker News

Hacking Salesforce Sites With an LLM Agent

AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.
GitHub

SQL Injection in grit42 CSV Export Endpoint

thoropass-vuln-research-program / 2026 / SQL Injection in grit42 CSV Export Endpoint / README.md Cannot retrieve latest commit at this time.
The Hacker News

LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution

Three patched LangGraph flaws could let attackers chain SQL injection and unsafe deserialization for RCE in self-hosted ...
Semiconductor Engineering

Chip Industry Week In Review

Other vulnerabilities: Drupal’s SQL injection (highly critical) and CISA’s recent advisories are here, including a number of new industrial control system vulnerabilities. Academic papers and reports ...
CSOonline

Cybersecurity trends in SEC filings

Analyzing SEC 10-K filings reveals that while CISOs handle cybersecurity under the CIO, companies rely on the NIST framework to address growing AI and supply chain risks. In 2023, the Securities and ...
InfoWorld

How to stop the AI code generation treadmill

Piling on guardrails is the sign of a system permanently compensating for its own unreliability. There’s a better approach. According to Sonar’s State of Code Developer Survey report for 2026, based ...