The Hacker News

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users

A security audit found 341 malicious ClawHub skills abusing OpenClaw to spread Atomic Stealer and steal credentials on macOS ...
SecurityWeek

Chrome, Edge Extensions Caught Stealing ChatGPT Sessions

LayerX discovered 16 extensions in the Chrome Web Store and Microsoft Edge Add-ons marketplace that steal users’ ChatGPT ...
CSO Online

This stealthy Windows RAT holds live conversations with its operators

The modular Windows RAT uses in-memory execution and live operator control to maintain persistence and exfiltrate sensitive ...
Infosecurity Magazine

Emojis in PureRAT’s Code Point to AI-Generated Malware Campaign

Researchers discover that PureRAT’s code now contains emojis – indicating it has been written by AI based-on comments ripped ...
Dark Reading

Chinese APTs Hacking Asian Orgs With High-End Malware

Advanced persistent threat (APT) groups have deployed new tools against a variety of targets, highlighting the increasing ...

Mandiant details how ShinyHunters abuse SSO to steal cloud data

Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) ...
The Hacker News

Researchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT Access

Experts uncovered malicious Chrome extensions that replace affiliate links, exfiltrate data, and steal ChatGPT authentication tokens from users.

How to spot and stop everyday cyberattacks

It never stops. Attackers continue to exploit new vulnerabilities and tricks to hack accounts or infiltrate devices. To stay ...
Security Boulevard

LayerX Discovers Malicious Chrome Extensions Stealing ChatGPT Accounts

The threat of malicious Chrome browser extensions raises its ugly head again, this time against ChatGPT users, LayerX says.
TechJuice

VoidLink Malware Almost Entirely Built by AI, Experts Warn

Researchers say VoidLink, malware almost completely developed by AI, raising alarms as threat actors harness generative ...
DataBreachToday

Social Engineering Hackers Target Okta Single Sign On

Security experts warn that "an active and ongoing campaign" being waged by ShinyHunters extortionists has at least 150 ...
The Tech ReportOpinion

A Social Media Network Exclusively For AI Agents: Is This The Next Privacy Issue?

New AI-only social network lets AI agents talk to each other. Moltbook raises humorous and serious questions about privacy ...