A massive security flaw was exposed in Orchids, a popular “vibe-coding” platform used by over a million people to build apps via simple chatbot prompts. Cybersecurity researcher Etizaz Mohsin demonstrated the vulnerability by hijacking a BBC journalist’s laptop in real-time. The attack was a “zero-click” exploit, meaning the victim did not have to download a file or click a malicious link; the breach happened silently within the trusted AI project itself. Within seconds, Mohsin gained full remote access, changed the user’s wallpaper to a skull, and proved he could have activated the camera or stolen sensitive files.
You May Like To Read: Hollywood Fights Back: ByteDance Vows to Curb AI Video Tool After Disney Threat
The breach highlights the hidden dangers of “agentic AI,” where tools carry out complex system commands with minimal human oversight. Experts at Ulster University warned that AI-generated code often lacks the rigorous security testing found in traditional software, creating “silent backdoors.” Orchids admitted its small team was overwhelmed by the rapid growth of the platform and may have missed earlier warnings.
#AI coding platform’s flaws allow BBC reporter to be hackedhttps://t.co/q9CwmJuqVN
Significant – and unfixed – #cybersecurity risk in popular #Orchids platform.#ArtificialIntelligence #InfoSec #ThreatIntelligence #VibeCoding #Vulnerability
— LaneSystems Ltd (@LaneSystems) February 13, 2026
Investors at the Pakistan Stock Exchange faced a tough day as the KSE-100 plunged over 5,000 points due to foreign outflows and political noise. Meanwhile, gold prices in the local market saw a significant drop of Rs 3,200, tracking a decline in international rates.
Check out our latest video:





























