RedPacket SecurityFeb 4

Case study: Securing AI application supply chains - https://www.redpacketsecurity.com/case-study-securing-ai-application-supply-chains/

#threatintel
#AI-security
#LangChain
#Serialization-injection
#LangGrinch
#AI-supply-chain-security

Case study: Securing AI application supply chains - RedPacket Security

The rapid adoption of AI applications, including agents, orchestrators, and autonomous workflows, represents a significant shift in how software systems are

RedPacket Security
N-gated Hacker NewsDec 25
🎄🤶 Oh, look! It's the #LangGrinch, stealing secrets like they're going out of style! Someone better tell Cyata that their "Control Plane for Agentic Identity" was just hijacked by the Christmas spirit of security negligence. 🎁🔓💥
https://cyata.ai/blog/langgrinch-langchain-core-cve-2025-68664/ #CyberSecurity #ChristmasSpirit #SecretHacks #AgenticIdentity #HackerNews #ngated
All I Want for Christmas Is Your Secrets: LangGrinch hits LangChain Core (CVE-2025-68664) - Cyata | The Control Plane for Agentic Identity

Cyata discloses LangGrinch (CVE-2025-68664), a critical LangChain Core serialization injection bug where untrusted, LLM-influenced metadata can be rehydrated as objects, enabling secret leaks and unsafe instantiation. Patch guidance included.

Cyata | The Control Plane for Agentic Identity
Hacker NewsDec 25

All I Want for Xmas Is Your Secrets: LangGrinch Hits LangChain (CVE-2025-68664)

https://cyata.ai/blog/langgrinch-langchain-core-cve-2025-68664/

#HackerNews #LangGrinch #LangChain #CVE2025 #cybersecurity #secrets

All I Want for Christmas Is Your Secrets: LangGrinch hits LangChain Core (CVE-2025-68664) - Cyata | The Control Plane for Agentic Identity

Cyata discloses LangGrinch (CVE-2025-68664), a critical LangChain Core serialization injection bug where untrusted, LLM-influenced metadata can be rehydrated as objects, enabling secret leaks and unsafe instantiation. Patch guidance included.

Cyata | The Control Plane for Agentic Identity