Blog

The latest about AI’s
security blind spots

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Featured

When AI Agents Browse Unprotected: A Security Audit of OpenClaw × Moltbook

*A technical security analysis of the OpenClaw ↔ Moltbook integration, February 2026*

Matan Levi, PhD
The Invisible Execute: How Claude Code’s Advanced Skill Patterns Become Blind Spots
March 10, 2026
5 min

When we teach an AI to code, we expect it to see everything it’s doing. That assumption breaks down in Claude Code’s skills system, where shell commands exfiltrate credentials before the AI receives a single token, and hooks silently surveil every tool call the AI makes. In both cases, the AI has no idea any of it is happening.

Matan Levi, PhD
Security
When AI Agents Browse Unprotected: A Security Audit of OpenClaw × Moltbook
February 19, 2026
15 minutes

*A technical security analysis of the OpenClaw ↔ Moltbook integration, February 2026*

Matan Levi, PhD
Security
Designing safe production AI agents via tool scoping: the outreach agent use-case
February 19, 2026
10 minutes

It’s tempting to build an “agent” by handing it every tool it might need: a browser, a search API, an email client, and maybe even direct database access.

Nitsan Bar, PhD
Security