techradar.com
Resources curated from this publisher and indexed across appsec.fyi topic pages. Last item added: 2026-06-19.
| Date Added | Resource | Excerpt |
|---|---|---|
| 2026-06-19 2026 | Microsoft warns AI agents are being 'AutoJack'-ed to deliver RCE payloads by browsing untrusted websitesRCE | Vulnerability chain called "AutoJack" in AutoGen Studio allows remote code execution (RCE) through malicious websites. Exploiting flaws like localhost channel misuse and skipped login checks, an attacker can trick an AI agent into running arbitrary code supplied by the untrusted website. This attack chain highlights the risks of AI agents browsing external content without strict authentication and isolation of local control planes. |
| 2026-06-16 2026 | Over 1 million WordPress sites at risk after popular plugin hacked OptinMonster among those hit in CDN supply-chain attackSupply Chain | Writeup detailing a supply-chain attack compromising over a million WordPress sites through a vulnerability in the UpdraftPlus plugin hosted on Awesome Motive's CDN. The attack involved malicious JavaScript injection via a compromised CDN API key, targeting logged-in WordPress admins to harvest tokens and create rogue accounts, enabling full site takeover and backdoor plugin installation. Site owners are advised to check for fake admin accounts like ‘developer_api1’ and ‘dev_xxxxxx’, inspect for hidden backdoor plugins, and rotate credentials and security salts. |
| 2026-06-10 2026 | This Microsoft Defender zero-day could give hackers unprecedented access to your systemRCE | Writeup of RoguePlanet, a race-condition zero-day vulnerability impacting Windows 10 and 11, which grants SYSTEM privileges. Disclosed by Chaotic Eclipse, this is the researcher's seventh such finding, following previous issues like BlueHammer, RedSun, UnDefend, YellowKey, GreenPlasma, and MiniPlasma. ThreatLocker confirmed the exploit's viability, noting that application allowlisting can serve as a defense against its execution. |
| 2026-06-02 2026 | Compromised Red Hat npm packages downloaded over 80000 times in one week supply chain attack still ongoingSupply Chain | Writeup of a Red Hat npm supply chain attack, where compromised packages were downloaded over 80,000 times. The attack leveraged a variant of the Mini Shai-Hulud worm to steal GitHub secrets, npm tokens, cloud credentials, and other sensitive information, with a copycat worm exhibiting similar tradecraft and targeting GCP and Azure identities. |
| 2026-06-01 2026 | OpenAI Codex tool with over 29000 downloads linked to malicious npm supply chain attack stealing authentication tokensSupply Chain | Library exposing a supply-chain attack targeting OpenAI Codex users. A malicious npm package, "codexui-android," with over 29,000 downloads, exfiltrated non-expiring refresh tokens. Researchers also identified two Android apps, OpenClaw Codex Claude AI Agent and Codex, with tens of thousands of downloads, which similarly targeted Codex users by sending credentials to attacker-controlled servers. |
| 2026-05-31 2026 | CISA warns that Nx Console and GitHub repositories abused in multiple supply chain compromises tools across enterprise cloud and DevOps environments exploitedSupply Chain | Analysis of supply chain attacks by CISA details exploitation of Nx Console VSCode extension and GitHub repositories via the Megalodon campaign. Threat actors pilfered CI/CD secrets and cloud credentials by poisoning workflows. Recommended mitigations include auditing contributor activity, forensic reviews, rotating secrets, pinning trusted package versions, and delaying package pulls for community detection. |
| 2026-04-05 2026 | 'Each vulnerability exposes a different class of enterprise data': LangChain framework hit by several worrying security issues here's what we knowAPI Sec | Library patches address critical vulnerabilities in LangChain and LangGraph, including path traversal (CVE-2026-34070), deserialization of untrusted data exposing secrets (CVE-2025-68664), and SQL injection in SQLite checkpoints (CVE-2025-67644). These flaws allowed exfiltration of files, API keys, and conversation histories, with risks potentially impacting downstream dependencies. Developers are urged to upgrade to the latest versions and audit configurations, treating LLM outputs as untrusted input. |