BlackBox AI, a popular VS Code coding assistant, has a critical indirect prompt injection vulnerability. Hackers can exploit this to gain remote root access to a user’s computer.

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.

Why Passwords Are Still a Developer's Problem in 2026. The case against password-based authentication is well-established in the IAM community, but the practical implications for ...

Four-legged robots that scramble up stairs, stride over rubble, and stream inspection data — no preorder, no lab coat required.

Databricks' KARL agent uses reinforcement learning to generalize across six enterprise search behaviors — the problem that breaks most RAG pipelines.

Databricks has released KARL, an RL-trained RAG agent that it says handles all six enterprise search categories at 33% lower ...

The new AI-driven AppSec tool reportedly uncovered hundreds of critical flaws and thousands of high-severity issues during early testing.

OpenClaw（俗称“龙虾”），在体验上带给人最大的感知是自主性。它可以在7*24小时中无休止的工作，而且具有心跳功能，能够主动自我唤起，看看下一步要做什么。在人类完全无监督的情况下完成任务。

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws to its Known Exploited Vulnerabilities ( KEV ) catalog, based on evidence of active exploitation.

之前发了很多期商业方向的博客了，其实我也是一个技术博主来着，而且研究AI，不研究技术，属于水中捞月。所以，本期我来一份硬核技术分享。