One of the Russian government’s most elite hacking groups has adopted an attack, known as Clickfix, to compromise devices belonging to sensitive organizations in Ukraine, the latter country’s CERT ...
AI can improve difficult conversations, but it only knows your side of the story. Learn the one question to ask before ...
OpenAI’s coding agent, Codex, now encrypts MultiAgentV2 message payloads. According to a user-filed complaint, local history may lose readable task audit trails. On July 14, the encrypted-message ...
QR code phishing – also known as quishing – has reached record levels in ESET telemetry. ESET analyzed nearly 900,000 AI ...
Companies’ increasing reliance on AI chatbots isn’t making the customer service experience smarter. It’s just making it more ...
Threat actors compromised AsyncAPI packages and weaponized trusted CI/CD workflows to distribute malware through npm. This ...
A threat actor has published hundreds of fake GitHub repositories impersonating legitimate software and security projects to ...
The Telegram-distributed service combines AI-assisted lures with device-code phishing and attacker-side session refresh, ...
A single misconfigured server has exposed the complete toolkit of an active a three-actor phishing ecosystem. According to ...
An exposed attack server led Lexfo to three Microsoft 365 phishing operations using Evilginx and device code abuse to capture ...
Indirect prompt injection attacks are now draining cryptocurrency from AI agents in production. Zscaler ThreatLabz documented ...