The Hacker News

Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code

Researchers warn Agentjacking can abuse Sentry errors to make AI coding agents run malicious code on developer machines.
Tech Times

Ivanti Sentry Flaw Triggers CISA’s First 3-Day Federal Patch Mandate, Already Exploited

Ivanti Sentry vulnerability patch is mandatory for federal agencies by June 14 under CISA’s BOD 26-04, which replaces flat ...
SecurityWeek

Ivanti Sentry Exploitation Attempts Hitting Honeypots

CVE-2026-10520, a critical-severity vulnerability in Ivanti Sentry, was flagged as exploited based on activity observed on ...
The Next Web

Agentjacking: a fake bug report can hijack your AI coding agent

Tenet Security's 'Agentjacking' attack turns a fake Sentry error into code running on developer machines. It hijacked Claude Code, Cursor & Codex.

Ivanti tells Sentry customers to patch now as critical bugs hit 10.0 and 9.9

It's patch time for Ivanti customers again after the security shop disclosed another two critical vulnerabilities in one of ...

Ivanti Sentry: Confusion over abuse of critical command injection vulnerability

Ivanti is currently warning of critical security vulnerabilities in Sentry. CISA warns of attacks, but Ivanti downplays them.

In Sentry, Torrey Pines tournament seems to have found a special sponsor

Officials from Sentry Insurance and Torrey Pines’ Century Club sounded like lovestruck teenagers when their relationship was ...