Friday 26 June 2026 18:49:01 GMT+02:00

Netcrook

HomeManifesto
News
Corporate Security IncidentsCloud, SaaS & Identity SecurityIndustrial Cybersecurity & Critical InfrastructureCyber Intelligence, TrendsAI Security & Agentic SystemsCyber Intelligence & Threat TrendsCyber WarfareCyber Warfare & Nation-State OperationsCyber CriminalityBreaches & Data LeaksCybercrimeMalware & BotnetsRansomware & ExtortionSecurity Awareness & Social EngineeringLegal PolicyLegal, Policy & Government CybersecurityPrivacy, Regulation & ComplianceTechnology, InnovationTechnology, Innovation & Digital InfrastructureVulnerabilities Patch ManagementResearch, Exploits & Offensive SecurityVulnerabilities & Patch Management
Techcrook
Tutte le tecnologieIdentita e accessoFirewall e reteBackup e archiviazioneEnergia e continuitaPrivacy e sicurezza fisicaLaboratorio e prototipazioneStampa e tracciabilitaTecnologia quotidiana
Geocrook
AfricaAsiaEuropeMiddle EastNorth AmericaOceaniaSouth America
WikicrookTeamAppContact
EnglishItalianoArabic

#AI gateway

LiteLLM’s Host Header Slip Turns an AI Gateway Into a Trust Problem

17 June 2026 08:30Vulnerabilities & Patch ManagementNorth America / USADEEPAUDIT

A critical authentication bypass in a widely used LLM proxy shows how a classic web flaw can become far more serious when it hits the control plane.

#LiteLLM | #CVE-2026-49468 | #Host header injection

When the AI Gateway Becomes the Prize

16 June 2026 13:02Vulnerabilities & Patch ManagementNorth America / USANEONPALADIN

A reported LiteLLM flaw chain shows how a proxy that concentrates access, secrets, and admin power can turn a low-privilege account into a gateway-level security event.

#LiteLLM | #AI gateway | #CVE chain

AI Proxy Bugs Can Turn a Preview Button Into a Server Shell

09 June 2026 17:19Vulnerabilities & Patch ManagementNorth America / USASECURESPECTER

A LiteLLM vulnerability chain underscores how one command-injection path and one Host-header trust flaw can collide into a high-risk control-plane exposure.

#LiteLLM | #CVE-2026-42271 | #RCE

When a Preview Button Turns into a Shell

09 June 2026 10:39Vulnerabilities & Patch ManagementNorth America / USASECURESPECTER

A high-severity LiteLLM command-injection bug shows how AI gateway control panels can collapse into host-level risk when role checks are too loose.

#CVE-2026-42271 | #LiteLLM | #CISA KEV

The AI Gateway Becomes the Prize in Enterprise Security

02 June 2026 02:16AI Security & Agentic SystemsNorth America / USAKERNELWATCHER

Palo Alto Networks’ Portkey acquisition shows how control over prompts, routing, and agent behavior is turning into the new security battleground.

#Palo Alto | #Portkey | #Prisma AIRS

LiteLLM Turns Into a Trust Trap in an AI Supply-Chain Theft Case

27 May 2026 18:28CybercrimeNorth America / USACRYSTALPROXY

A reported campaign tied to TeamPCP shows how a single AI middleware package can become a high-value path to secrets, even when the exact compromise method remains unclear.

#TeamPCP | #LiteLLM | #credential harvesting

Four Flaws, One Control Plane: Why OpenClaw’s Chained Risk Matters

16 May 2026 00:09Vulnerabilities & Patch ManagementNEONPALADIN

A newly disclosed chain of OpenClaw weaknesses shows how layered bugs in an AI gateway can turn a narrow opening into data exposure, elevated privileges, and long-lived access.

#OpenClaw | #Claw Chain | #privilege escalation

Pwn2Own Berlin Turns Browsers, Windows, and AI Gateways into Live Fire

15 May 2026 19:35Research, Exploits & Offensive SecurityNorth America / USADEBUGSAGE

A sanctioned exploit contest put Microsoft Edge, Windows 11, LiteLLM, and NVIDIA-related technologies under pressure, showing how today’s attack surface reaches from the browser sandbox to AI control planes.

#Pwn2Own Berlin 2026 | #Microsoft Edge | #LiteLLM

Pwn2Own’s Berlin Shockwave: Browsers, Windows, and AI Gateways All Took Hits in One Day

15 May 2026 12:17Research, Exploits & Offensive SecurityNorth America / USADEBUGSAGE

A controlled exploit contest in Berlin turned into a stress test for modern security layers, with researchers demonstrating 24 unique zero-days across Microsoft Edge, Windows 11, LiteLLM, and NVIDIA-related targets.

#Microsoft Edge | #Windows 11 | #LiteLLM