ZCyberNews
中文

#ai

15 articles

From 8 April to 12 May 2026, ZCyberNews covered 34 articles under the ai tag, with a severity mix of two critical, 13 high, five medium, and 13 informational reports. The top threat actors observed were Bluekit and Pushpaganda. The most prominent vulnerability was CVE-2026-31251, carrying a CVSS score of 9.8. Affected sectors included technology, financial services, all, artificial intelligence, and critical infrastructure, while impacted regions spanned Global, United Kingdom, United States, Asia, and Australia.

CosyVoice gRPC Server Insecure Deserialization Flaw CVE-2026-31251CRITICAL
Vulnerabilities

CosyVoice gRPC Server Insecure Deserialization Flaw CVE-2026-31251

CVE-2026-31251: CosyVoice gRPC server deserializes untrusted models via torch.load() without weights_only=True, enabling RCE via crafted .pt files. No patch confirmed.

CVE-2026-31251
4 min read
UK Cyber Agency Warns AI Will Trigger 'Patch Wave' of Urgent FixesMEDIUM
Industry News

UK Cyber Agency Warns AI Will Trigger 'Patch Wave' of Urgent Fixes

NCSC warns organizations to brace for a surge of urgent patches as AI accelerates vulnerability discovery, raising exploitation risk. No specific CVEs cited.

2 min read
Bluekit Phishing Service Offers AI Assistant, 40 TemplatesHIGH
Threat Intel

Bluekit Phishing Service Offers AI Assistant, 40 Templates

A new phishing-as-a-service platform called Bluekit provides over 40 templates targeting banks, social media, and email providers, plus an AI assistant for drafting lures.

2 min readBluekit
AI Assistants Reshape Security Priorities for EnterprisesHIGH
Industry News

AI Assistants Reshape Security Priorities for Enterprises

Autonomous AI agents with file and service access are forcing organizations to rethink identity controls, data boundaries, and monitoring — Krebs reports on shifting attack…

2 min read
Google: AI Prompt Injection Attacks Rising, Still Low-SophisticationMEDIUM
Threat Intel

Google: AI Prompt Injection Attacks Rising, Still Low-Sophistication

Google reports a rise in malicious AI prompt injection attacks, but most remain low-sophistication and harmless. Indirect injection attempts target LLM-integrated apps.

2 min read
Fake Google Antigravity Installer Steals Accounts via Trojanized AI ToolHIGH
Malware

Fake Google Antigravity Installer Steals Accounts via Trojanized AI Tool

Malwarebytes reports a trojanized installer for Google's Antigravity AI tool steals browser cookies and account credentials within minutes, targeting users seeking the leaked software.

3 min read
North Korean Operatives Use AI and Fake Identities to Infiltrate Companies viaHIGH
Threat Intel

North Korean Operatives Use AI and Fake Identities to Infiltrate Companies via

North Korean operatives are using AI tools and forged documents to pass remote job interviews, according to Flare research. The tactic aims to place threat actors inside target companies for long-term espionage and network access.

3 min readNorth Korean operatives
AI SOC Tools Criticized for Automating Triage, Not Reducing Analyst WorkloadINFORMATIONAL
Industry News

AI SOC Tools Criticized for Automating Triage, Not Reducing Analyst Workload

A new analysis argues most AI-powered security operations center tools merely accelerate alert triage without reducing the underlying workload for analysts, failing to deliver on promises of true automation.

4 min read
ClickFix Phishing Campaign Masquerades as Claude AI InstallerHIGH
Threat Intel

ClickFix Phishing Campaign Masquerades as Claude AI Installer

A phishing campaign uses fake Claude AI installer lures and 'ClickFix' social engineering to trick users into granting remote access, enabling credential theft and financial fraud.

4 min read
Pushpaganda Campaign Exploits Google Discover to Hijack Browser NotificationsMEDIUM
Threat Intel

Pushpaganda Campaign Exploits Google Discover to Hijack Browser Notifications

A threat operation dubbed Pushpaganda is abusing Google Discover with AI-generated clickbait to trick users into enabling malicious browser notifications, which then deliver phishing and scam content.

4 min readPushpaganda
Asia's Digital Supply Chain Poses Distinct Security ChallengesMEDIUM
Industry News

Asia's Digital Supply Chain Poses Distinct Security Challenges

Asia's interconnected digital ecosystems, divergent regulatory regimes, and rapid AI adoption are creating unique and complex security risks for regional and global supply chains, according to a new analysis.

3 min read
Fake Claude AI Website Delivers PlugX RAT via DLL SideloadingHIGH
Malware

Fake Claude AI Website Delivers PlugX RAT via DLL Sideloading

A fraudulent website impersonating Anthropic's Claude AI distributes a self-deleting installer that deploys the PlugX remote access trojan via DLL sideloading.

4 min read
Fake Claude AI Site Delivers PlugX Malware in Trojanized InstallerHIGH
Malware

Fake Claude AI Site Delivers PlugX Malware in Trojanized Installer

A sophisticated phishing campaign uses a counterfeit Claude AI website to distribute a trojanized installer, deploying the remote access trojan PlugX to establish persistent backdoor access.

4 min read
AI-Powered Threat Actor Breaches Mexican Government, Exposes Citizen DataHIGH
Threat Intel

AI-Powered Threat Actor Breaches Mexican Government, Exposes Citizen Data

A sophisticated attacker leveraged AI tools like Claude and ChatGPT to breach nine Mexican government agencies, exfiltrating hundreds of millions of citizen records in a multi-month campaign.

4 min read
GPT-5 Release: Security Implications for Enterprise DefendersHIGH
AI Security

GPT-5 Release: Security Implications for Enterprise Defenders

OpenAI's GPT-5 raises the bar for AI-assisted cyberattacks — spear-phishing at scale, automated exploit generation, and deepfake social engineering. Here's what security teams need to know and do.

3 min read

Stay Updated

Get the latest cybersecurity news delivered to your inbox.