Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Sentry agentjacking analysis shows malicious error events can trigger AI coding agents

Technical Analysis
First reported
Last updated
Happening score
H score 41
1 unique sources, 1 articles

Summary

Hide ▲

Researchers uncovered a new attack class against Sentry that can coerce AI coding agents into running attacker-supplied commands on developer machines, creating direct risk of credential theft, repo access, and cloud compromise. The finding matters because the attack abuses trusted MCP tool responses and can bypass conventional controls while looking like legitimate remediation guidance. Exposure testing found over 100 real-world targets and 2388 organizations with valid injectable DSNs.

Related Happenings

AI-driven worm reasons at runtime and self-replicates across a 33-host test network

Technical Analysis
H score40 First: 09.06.2026 14:59 Last: 09.06.2026 14:59 Sources 1

About this happening: Researchers demonstrated a **proof-of-concept AI-driven worm** that reasons at runtime and self-replicates, showing adaptive host-to-host spread across a **33-host** vulnerable te...

Open Happening

Enterprise AI deployments need governance and segmentation after red-team failures

Defensive Guidance
H score10 First: 24.04.2026 15:10 Last: 24.04.2026 15:10 Sources 1

About this happening: **Enterprise AI deployments** are exposing familiar security gaps, making **governance**, **segmentation**, and **red-team validation** urgent to reduce the risk of **data theft**...

Open Happening

Indirect prompt injection payloads against AI agents reveal fraud, deletion, and secret-theft paths

Technical Analysis
H score36 First: 23.04.2026 12:30 Last: 23.04.2026 12:30 Sources 1

About this happening: **10** new **indirect prompt injection (IPI)** payloads show how web content poisoning can coerce **AI agents** into **financial fraud**, **data destruction**, and **API key theft...

Open Happening

Russian-speaking threat actor campaign expands across multiple victims

Campaign
H score42 First: 09.03.2026 01:35 Last: 09.03.2026 01:35 Sources 1

About this happening: A **Russian-speaking threat actor** ran an **AI-augmented campaign** against **FortiGate security appliances**, using **multiple commercial AI services** to scale compromise attem...

Open Happening

OpenClaw public-facing RCE exposure with public exploit code remote code execution flaw

Vulnerability
H score44 First: 09.02.2026 11:30 Last: 09.02.2026 11:30 Sources 1

About this happening: **OpenClaw** deployments exposed to the public internet face **RCE risk**, with **12,812 instances** reportedly exploitable and **public exploit code** available. SecurityScorecar...

Open Happening

Timeline

  1. 11.06.2026 12:15 2 articles · 9h ago

    Tenet Security describes agentjacking against Sentry error events

    Initial Disclosure

    Tenet Security says a new attack class called agentjacking can abuse Sentry error events and the Sentry MCP server to feed AI coding agents malicious remediation guidance, enabling arbitrary code execution on developer machines with the developer’s full privileges. The technique uses a target’s public Sentry DSN to POST crafted error events that appear indistinguishable from legitimate guidance, and Tenet says the payload can be retrieved when a developer asks an AI coding agent to fix unresolved Sentry issues. The researchers reported testing the method against over 100 real-world targets, observing an 85% success rate across Claude Code, Cursor and Codex, and identifying at least 2388 organizations exposed with valid injectable DSNs.

    Show sources
    Open in new tab