Agentic systems can turn trusted content, tools, and memory into an attack path, making human oversight easier to outrun than many teams expect.
A reported zero-click case on iPhone pushes mobile identity security into the spotlight, where account abuse can look normal until the messages start moving money.
A reported zero-click chain linking WhatsApp for iOS and Apple’s ImageIO framework highlights how legacy iPhones can turn a chat app into a stealthy fraud surface.
A reported exploit chain shows how a zero-click media foothold can be paired with a device-specific driver flaw to raise the stakes from parsing risk to kernel-level impact.
A zero-click vulnerability let attackers hijack the Claude AI Chrome extension, turning innocent browsing into a covert cyberattack.
A critical Android audio vulnerability allowed remote attacks with a single malicious sound file-no taps, no clicks, no warnings.