AI-agent compromise & exploits + Iranian OT escalation (Flowise RCE + Langflow + OpenClaw/ClawHavoc + Claude Code/Mythos + LiteLLM + GrafanaGhost + McKinsey Lilli + CISA on CyberAv3ngers/Handala medtech)

Key Questions

What is the critical vulnerability in Flowise?

Flowise has a CVSS 10.0 CVE-2025-59528 remote code execution (RCE) flaw under active exploitation, affecting over 12,000 exposed instances. Threat actors are leveraging it for unauthorized access and control.

What Iranian hacking activities were detailed in the CISA/FBI/NSA alert?

On May 30, 2026, CISA, FBI, and NSA issued a joint alert confirming Iran-linked groups CyberAv3ngers and Handala are exploiting RCE vulnerabilities in Rockwell/Allen-Bradley PLCs and medtech like Stryker, disrupting US critical infrastructure. Organizations are advised to audit, sandbox, rotate credentials, isolate OT, and conduct hunts.

What is GrafanaGhost?

GrafanaGhost is a prompt injection vulnerability in Grafana that enables silent data exfiltration through AI workflows. It allows attackers to steal data without detection.

How was McKinsey's Lilli platform compromised?

An autonomous AI agent from CodeWall exploited McKinsey's Lilli platform via SQL injection and access control flaws within two hours, accessing 46 million chats. This highlights risks in internal AI agents.

What issues affect Claude Code and Mythos?

Claude Code suffered a 512k npm source code leak, leading to vulnerabilities, while Mythos Preview auto-generates zero-day exploits for OS, browsers, and kernels. Anthropic's AI model demonstrates advanced automated vulnerability discovery.

What is the Langflow vulnerability?

Langflow has CVE-2026-33017, added to CISA's Known Exploited Vulnerabilities (KEV) catalog, actively exploited in the wild.

What are OpenClaw and ClawHavoc?

OpenClaw exposes over 500k instances with 42k vulnerable to 100 CVEs, linked to ClawHavoc exploits.

What breach involved Mercor and LiteLLM?

Mercor/TeamPCP suffered a 4TB data breach via LiteLLM, exposing sensitive information.

Flowise CVSS10 CVE-2025-59528 RCE active exp 12k+; Langflow CISA KEV CVE-2026-33017 wild; Claude Code 512k npm leak + Mythos Preview auto-ZD exploits (OS/browser/kernels); OpenClaw 500k+/42k exposed 100 CVEs; GrafanaGhost prompt injection silent exfil; Mercor TeamPCP LiteLLM 4TB breach; McKinsey Lilli autonomous agent SQLi/AC hack (46M chats); joint CISA/FBI/NSA alert (2026-05-30) confirms Iranian CyberAv3ngers/Handala RCE on Rockwell/Allen-Bradley PLCs + medtech (Stryker) disrupting US CI. Audit/sandbox/rotate/OT isolation/hunts.

Sources (38)

Updated Apr 8, 2026

AI-agent compromise & exploits + Iranian OT escalation (Flowise RCE + Langflow + OpenClaw/ClawHavoc + Claude Code/Mythos + LiteLLM + GrafanaGhost + McKinsey Lilli + CISA on CyberAv3ngers/Handala medtech)

Key Questions

What is the critical vulnerability in Flowise?

What Iranian hacking activities were detailed in the CISA/FBI/NSA alert?

What is GrafanaGhost?

How was McKinsey's Lilli platform compromised?

What issues affect Claude Code and Mythos?

What is the Langflow vulnerability?

What are OpenClaw and ClawHavoc?

What breach involved Mercor and LiteLLM?

The agencies today issued a joint alert about Iranian hackers working to ...

Anthropic’s new AI model finds and exploits zero-days across every major OS and browser

Pro-Iran hackers have disrupted some industrial-control systems, US says

Pro-Iran hackers are targeting US industrial control systems, advisory says

Iranian hackers are targeting US energy and water sectors, federal agencies warn

US warns of Iranian hackers targeting Rockwell Automation systems

Alert! CISA & partners issue stark warning: Iran-linked hackers are targeting US critical infrastructure - Cyber Daily

Iranian hackers are targeting American critical infrastructure, US agencies warn

Autonomous agent hacks McKinsey’s AI platform in two hours

GrafanaGhost: The Phantom Stealing Your Data

Iranian hackers are breaking into U.S. industrial systems, agencies warn

March 2026 Threat Report: Critical CVEs

‘GrafanaGhost’ vulnerability allowed for silent data exfiltration through AI workflows

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

Claude Code leak: Researchers find first vulnerability

Hackers Turned Anthropic's Claude Code Leak into a Malware Lure

Anthropic’s Claude Code Leak Exposes Safety Gaps, Offers a Playbook for Rivals

Anthropic Claude Code AI Leak Exposes Source, Sparks Copyright Takedowns, and Drives Democratization of AI Tools

Anthropic says no sensitive data exposed in leak of code behind Claude AI agent

Anthropic leaks source code for its AI coding agent Claude

CVE-2026-5585: Information Disclosure in Tencent AI-Infra-Guard - Live Threat Intelligence - Threat Radar | OffSeq.com

Claude 4.7 LEAKED: Anthropic's Secret "Mythos" AI & Autonomous Agents Explained

Emerging Threat: (CVE-2026-27876) Grafana Remote Code Execution via SQL Expressions | CyCognito Blog

Your AI Agent Just Installed a Malicious Skill — Here's How to Catch It

Twin cybersecurity incidents leave AI industry shaken

CertiK Warns of Critical Security Vulnerabilities in AI Agent OpenClaw

Anthropic Just Leaked Their Own Source Code (Again) 🤯

【2026年最新】Claude Codeの大規模ソース流出事件【医ちゃんねる切り抜き】

Unmasking ClickFix Exploit

GlassWorm Malware Attack Targeting VS Code and Open VSX Developers

New Actively Exploited Flaws! European Commission Breached! Microsoft Units Face Hiring Freeze!

【要確認】Claude Codeコード流出｜今すぐできるセキュリティ対策

60万行机密代码泄露：一场扒光AI底裤的赛博洗白，与我们即将面对的未来

Anthropic’s Claude AI Writes Full FreeBSD Kernel Exploit in Four Hours

Vertex AI 'double agent' flaw exposes customer data and Google's internal code

OpenClaw has 500,000 instances and no enterprise kill switch

"2026 Just Got Crazy": Internet Erupts After Anthropic's Claude Source Code Leak Shakes AI Industry

Massive Anthropic blunder: Claude Code source found exposed online