CSO Online

Open WebUI bug turns ‘free model’ into an enterprise backdoor

The bug allows attacker-controlled model servers to inject code, steal session tokens, and, in some cases, escalate to remote ...
The Hacker News

VS Code Forks Recommend Missing Extensions, Creating Supply Chain Risk in Open VSX

AI-based VS Code forks recommended unclaimed extensions, allowing malicious uploads in Open VSX and risking developer systems ...

Copilot Vision gains ability to analyze apps in the Windows 11 taskbar

Microsoft's Copilot AI assistant can now analyze apps in the taskbar and offer assistance—only when you explicitly ask for it ...