Signal criticality: High
What happened: Help Net Security reported that what the researchers have found The evaluation shows that AI agents can exploit common configuration issues when prompted. Some models reported success before completing the task, while others verified the result before stopping. All successful escapes relied on known misconfigurations or publicly disclosed vulnerabilities, and the tests did not identify new flaws.
Key takeaways:
Original source: https://www.helpnetsecurity.com/2026/03/30/ai-agents-container-breakout-capabilities-research/
Signal criticality: High
What happened: The Hacker News published "We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them". AWS Bedrock is Amazon's platform for building AI-powered applications. It gives developers access to foundation models and the tools to connect those models directly to enterprise data and systems. That connectivity is what makes it powerful – but it’s also what makes Bedrock a target. When an AI agent can query your Salesforce instance, trigger a Lambda function, or pull from a SharePoint
Key takeaways:
Original source: https://thehackernews.com/2026/03/we-found-eight-attack-vectors-inside.html
The strongest signal today is that AI security is being decided in the surrounding control layer — permissions, connectors, deterministic workflow design, response speed, and the infrastructure that still underpins trust. That is a more durable framing than generic agent hype, and it is the one worth carrying forward.