John Z Black
Brunswick, ME • (207) 245-1010 • contact@johnzblack.com
Google Swallowed Wiz for $32 Billion. OpenAI Bought an LLM Red-Team Firm. Same Day.
Google closed its $32B Wiz acquisition while OpenAI snapped up Promptfoo, an AI security startup. Two deals, one message: the biggest platforms are making security a built-in feature, not something they outsource.
Read More
Your AI Automation Platform Is a Backdoor: n8n RCE and a 4-Minute AI Browser Phishing Attack
CISA flagged an actively-exploited RCE in n8n with 24,700 exposed instances. Researchers turned Perplexity's AI browser into a phishing tool in under four minutes. When software acts for you, it can be turned against you.
Read More
AI Agents Have an Infrastructure Problem — and Researchers Just Proved It
MCP protocol flaws, a 38-researcher red team exercise, and LLM-powered deanonymization all landed the same week. AI agent security isn't a future problem. It's a right now problem.
Read More
AI Found Thousands of Software Bugs This Month. Then It Wrote Exploits.
Anthropic's Claude found 22 Firefox zero-days in two weeks and wrote working exploits for two of them. OpenAI's Codex flagged over 10,000 high-severity bugs across major open-source projects. AI-powered vulnerability research isn't theoretical anymore.
Read More
Your AI Assistant Is an Attack Surface Now
Exposed admin panels leaking API keys, prompt injection as a supply chain weapon, fake installer packages on npm, and nation-states using AI to hack at scale. AI agents just became everyone's security problem.
Read More