Critical Vulnerabilities and Data Breaches Reported in Cybersecurity and AI Systems

A Remote Code Execution (RCE) vulnerability has been identified in Trend Micro Apex One and Worry-Free Business Security products, affecting versions prior to 2023. The patch was released in December 2025. No active exploitation has been reported. Additionally, a flaw in Claude 3.5 Sonnet (Anthropic’s AI model) allowed arbitrary code execution via malicious prompts, which was fixed in January 2026. Finally, Betterment, a financial management platform, experienced a data leak in December 2025, exposing customer information (names, addresses, phone numbers) due to a vulnerability at a third-party vendor.