Accounting Today

Act now to battle data exfiltration

The stakes have never been higher for accounting firms. As custodians of sensitive financial data, tax returns, payroll records and audit reports, these businesses are prime targets for a rapidly ...
Computerworld

One click is all it takes: How ‘Reprompt’ turned Microsoft Copilot into a data exfiltration tool

AI copilots are incredibly intelligent and useful — but they can also be naive, gullible, and even dumb at times. A new one-click attack flow discovered by Varonis Threat Labs researchers underscores ...
SiliconANGLE

‘GrafanaGhost’ vulnerability allowed for silent data exfiltration through AI workflows

A new report out today from artificial intelligence security platform company Noma Security Inc. details a recently discovered vulnerability in Grafana that allowed sensitive enterprise data to be ...
Hosted on MSN

Google's AI-powered Antigravity IDE has some worrying security issues

Antigravity IDE allows agents to execute commands automatically under default settings Prompt injection attacks can trigger unwanted code execution within the IDE Data exfiltration occurs through ...
CSOonline

AWS Bedrock’s ‘isolated’ sandbox comes with a DNS escape hatch

BeyondTrust shows how AWS Bedrock AgentCore’s ‘isolated’ environment can be tricked into data exfiltration and command execution via DNS. AWS’ promise of “complete isolation” for agentic AI workflows ...
CSOonline

Fortinet hit by another exploited cybersecurity flaw

A critical SQL injection flaw in FortiClient EMS allows remote code execution and data exfiltration, leaving thousands of internet facing systems at risk. Yet another critical flaw in a Fortinet ...
Morningstar

HiddenLayer Unveils New Agentic Runtime Security Capabilities for Securing Autonomous AI Execution

Delivers the visibility and control required to secure autonomous AI agents across critical workflows. One in eight AI breaches are linked to agentic systems, according to HiddenLayer's 2026 AI Threat ...