The Hacker News

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe ...

OpenAI admits prompt injection is here to stay as enterprises lag on defenses

OpenAI confirms prompt injection can't be fully solved. VentureBeat survey finds only 34.7% of enterprises have deployed ...

OpenAI Admits Prompt Injection Is a Lasting Threat for AI Browsers

Security researchers have warned the users about the increasing risk of prompt injection attacks in the AI browsers.

Critical ‘LangGrinch’ vulnerability in langchain-core puts AI agent secrets at risk

The vulnerability, tracked as CVE-2025-68664 and dubbed “LangGrinch,” has a Common Vulnerability Scoring System score of 9.3.

Your AI browser can be hijacked by prompt injection, OpenAI just patched Atlas

OpenAI says it has patched ChatGPT Atlas after internal red teaming found new prompt injection attacks that can hijack AI ...