Ethereum deploys ERC-8004, a universal identity and reputation standard for AI agents, now live on Mainnet with 10k+ agents registered.

BlackBox AI, a popular VS Code coding assistant, has a critical indirect prompt injection vulnerability. Hackers can exploit this to gain remote root access to a user’s computer.

It uses some of the oldest tricks in the book.

Morgan Stanley Technology, Media & Telecom Conference 2026 March 2, 2026 2:30 PM ESTCompany ParticipantsEd Grabscheid - ...

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT ...

The average SOC manages 83 security tools from nearly 30 vendors. Why the smartest CISOs are consolidating their security ...

Databricks' KARL agent uses reinforcement learning to generalize across six enterprise search behaviors — the problem that breaks most RAG pipelines.

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...

New malware spreads via fake GitHub downloads, stealing browser passwords, crypto wallets, Discord tokens, and credit card ...

Crims hope for payday from malicious payloads rather than stealing access tokens Microsoft has warned organizations about ...

Agent skills shift AI agents toward procedural tasks with skill.md steps; progressive disclosure reduces context window bloat in real use.