Every incident your team
needs to know. Every week.
Every Wednesday โ the top AI security incidents, organized by category: Vulnerability, AI Security, Supply Chain, Major Breach. With RuntimeAI's take on what your team should do about each.
Subscribe to AI Security Weekly
Every Wednesday: the AI security incidents your team needs to know, with actionable RuntimeAI context.
Work email only โ no personal email domains (Gmail, Yahoo, Outlook).
13 incidents: Palo Alto PAN-OS zero-day RCE exploited before patch, Canvas 275M student breach during finals week, Windows Defender CVE-2026-33825, DPRK AI-generated npm malware, WatchGuard Firebox zero-day, and 1 million exposed AI service endpoints with no auth.
SAP npm packages hit by self-propagating supply chain worm stealing CI/CD secrets. ClickUp hardcoded API key exposed enterprise and government orgs for over a year. Microsoft SharePoint zero-day actively exploited on 1,300+ servers. Medtronic loses 9M records. ADT 5.5M SSO compromised.
CVSS 10 RCE in Gemini CLI lets attackers inject commands through malicious repositories. LiteLLM CVE actively exploited in the wild. Cursor IDE exposes arbitrary code execution. VS Code Copilot co-author injection confirmed. Six incidents that escalate the agentic attack surface.
MCP RCE design flaw. Claude Mythos discovers 271 Firefox zero-days autonomously. Prompt injection โ code execution in developer IDEs. Microsoft & Salesforce emergency data leak patches. CSA formal CISO advisory on the post-Mythos exploit storm.
824 malicious OpenClaw skills. A $10B startup breached via a 40-minute PyPI window. Microsoft's own MCP server with zero auth. This is the week AI agent security became everyone's problem.