The Next Web

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.
PCMag

I Traced My Leaked Email Address to the Dark Web. Here's How It Got There

After AI-powered scams overwhelmed my inbox, I investigated how my email address ended up on the dark web—and discovered the ...
Tech Times

Embodied AI World Models Attracted $6 Billion, But the LLM Parallel May Not Hold

Embodied AI world models drew $6 billion in Q1 2026 alone, but new analysis from Fusion Fund investors argues the LLM scaling ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

24B Records Exposed in Massive Leak of Emails, Passwords, and Login Data

Cybernews researchers found an exposed database with 24 billion credential records, raising fresh risks from password reuse ...
InfoQ

Ky 2.0 Fetch API Wrapper with Revamped Hooks, Smarter Timeouts, and Built-In Schema Validation

Ky 2.0 is an open-source JavaScript HTTP client built on the Fetch API, featuring significant updates such as consolidated ...
Ars Technica

AI costs how much? GitHub Copilot users react to new usage-based pricing system.

In April, GitHub announced that it was moving subscribers from request-based billing to a usage-based model for its AI-powered Copilot service. As that new pricing model goes into effect today, many ...
Jurist

Amnesty International raises concerns about use of unlawful data collection systems to train generative AI

Amnesty International reported on Thursday that tech companies have used unlawful web scraping to collect large volumes of online data for the development of generative artificial intelligence (AI) ...
Phys.org

The quantum key to seeing through chaos

Researchers from the Institut des NanoSciences de Paris, the Kastler Brossel Laboratory and the University of Glasgow have developed an innovative method that renders a scattering medium transparent ...
Fast Company

What are AI tarpits? Understanding the tools people are using to poison LLMs

In order for a chatbot to become more intelligent, and thus more useful to the end-user, it needs to assimilate data continuously. This process is known as “training.” The problem is that many AI ...
Wired

Thousands of Vibe-Coded Apps Expose Corporate and Personal Data on the Open Web

Companies like Lovable, Base44, Replit, and Netlify use AI to let anyone build a web app in seconds—and in thousands of cases, spill highly sensitive data onto the public internet. Security researcher ...