TMCnet

Snyk Adds Agentic Development Security to its AI Security Platform: The Enforcement Layer for the AI Agents Now Building Enterprise Software

Snyk, the AI security company, today announced Evo Agentic Development Security (ADS), extending security coverage to the AI workforce powering modern software development. Evo ADS secures how ...
CSOonline

Prompt hijacking puts MCP-based AI workflows at risk

Model context protocol (MCP) gives IT teams a standardized way to connect large language models (LLMs) to tools and data sources when developing AI-based workflows. But security researchers warn that ...
Security Boulevard

Post-Quantum AI Infrastructure Security: A Blueprint for Quantum-Resistant MCP Architectures

Secure your AI infrastructure against 'Harvest Now, Decrypt Later' threats. Learn to build quantum-resistant Model Context Protocol (MCP) architectures today.

Mitiga Labs Launches Skillgate to Detect Risks in AI Agent Skills and Configurations

Mitiga, the leader in agentic runtime security for cloud, SaaS, and AI, today announced the release of Skillgate, a free tool ...
VentureBeat

Microsoft patched a Copilot Studio prompt injection. The data exfiltrated anyway

Microsoft assigned CVE-2026-21520, a CVSS 7.5 indirect prompt injection vulnerability, to Copilot Studio. Capsule Security discovered the flaw, coordinated disclosure with Microsoft, and the patch was ...
The Hacker News

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

Microsoft details AutoJack exploit chain targeting AutoGen Studio MCP WebSocket in pre-release builds, enabling ...

Practical DevSecOps Launches Certified MCP Security Expert (CMCPSE), First Dedicated Hands-On MCP Security Certification

Certified MCP Security Expert (CMCPSE), the first-of-its-kind credential built for security professionals attacking and ...
techtimes

AI Agent Security Hits Its Reckoning: Prompt Injection May Be a Permanent Flaw, Not a Patchable Bug

Prompt injection is the technique of smuggling instructions to an AI agent through content the agent reads — a document, a calendar invite, a web page, a code comment — so that hostile text carries ...