Cybersecurity Headlines Gemini prompt injection flaw exposes calendar info, hacker admits to Supreme Court data leak, researchers uncover PDFSIDER malware
8 snips
Jan 20, 2026 Dive into the latest cybersecurity news as a Gemini prompt injection flaw reveals sensitive calendar information. A hacker confesses to leaking confidential Supreme Court data, raising alarms. Researchers unveil the stealthy PDFSIDER malware, which employs DLL sideloading and DNS exfiltration techniques. Also, learn about CISA’s internal leadership disputes and significant breaches affecting thousands, including Ingram Micro. Discover how AI is expanding attack surfaces and the urgency of patching vulnerabilities in connected devices.
AI Snips
Chapters
Transcript
Episode notes
Treat Agent Inputs As Untrusted
- Patch and validate LLM integrations that accept external calendar or invite content.
- Treat agent inputs as untrusted and sanitize or restrict actions that create or expose calendar events.
AI-Native Workflows Widen Attack Surface
- AI-native workflows expand attack surfaces by chaining tools and data sources.
- Migo Security's Gemini finding echoes similar exfiltration and escalation across other AI agents and IDEs.
Supreme Court Hacker Boasts On Instagram
- Nicholas Moore pleaded guilty to breaching the Supreme Court's e-filing system and posting screenshots on Instagram.
- Prosecutors say he reused stolen credentials to access AmeriCorps and VA systems and leaked personal and health data.