#security

A high-signal r/gamernews post highlights Tom's Hardware reporting that Markus "Doom" Gaasedelen demonstrated a double voltage glitch method that can load unsigned code across the Xbox One security stack.

On March 11, 2026, OpenAI published new guidance on designing AI agents to resist prompt injection, framing untrusted emails, web pages, and other inputs as a core security boundary. The company says robust agents separate data from instructions, minimize privileges, and require monitoring and user confirmation before taking consequential actions.

Mozilla said on March 6, 2026 that Anthropic’s AI-assisted red team surfaced more than a dozen verifiable Firefox security bugs. Mozilla says engineers validated and fixed most of the issues before Firefox 148 shipped.

Meta announced new anti-scam tools on March 11, 2026 for WhatsApp, Facebook, and Messenger, alongside new AI detection and enforcement efforts. The update combines user-facing warnings, advertiser verification, and large-scale takedown data.

Microsoft said Microsoft 365 E7: The Frontier Suite will reach general availability on May 1 for $99 per user, bundling Copilot, Agent 365, and security controls. The company also set May 1 GA for Agent 365 at $15 per user and emphasized Claude and next-gen OpenAI model access inside Copilot.

A March 13 Hacker News thread focused on a security report finding 39 active Algolia admin keys exposed across open-source documentation sites. The risk is not theoretical: the keys could modify or delete search indexes, poison results, and expose indexed content on trusted developer docs.

Perplexity has introduced Computer for Enterprise as a major upgrade to its Enterprise offering. The product pushes Perplexity beyond answer generation into long-running workflows across websites and internal web apps, while adding audit, identity, and data-governance controls.

Anthropic says Claude Opus 4.6 found 22 Firefox vulnerabilities in a two-week collaboration with Mozilla, including 14 high-severity bugs. The company argues current frontier models are already powerful defensive security researchers and that developers should use the window before offensive capability catches up.

A Hacker News discussion around Amine Raji's local ChromaDB lab highlights a practical risk in RAG systems: attackers can win by contaminating the source corpus, and the strongest defense may sit at ingestion rather than in the prompt.

OneCLI proposes a proxy-and-vault pattern for AI agents so tools stay reachable while real credentials remain outside the model runtime.

Meta announced new anti-scam protections across WhatsApp, Facebook, and Messenger on March 11, 2026. The company also detailed broader AI-based scam detection, enforcement statistics, and a plan to raise advertiser verification so verified advertisers account for 90% of ad revenue by the end of 2026.

Anthropic said Claude Opus 4.6 found 22 Firefox vulnerabilities during a two-week collaboration with Mozilla. Mozilla classified 14 as high severity and shipped fixes in Firefox 148.0.