Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.
LayerX tricked six AI browsers, including ChatGPT Atlas, Comet and Claude, into leaking user credentials by convincing them they were playing a game.
Operation Navy Ghost is targeting Python developers who build Telegram bots by hiding backdoors inside trojanized Pyrogram forks uploaded to PyPI. The campaign has been active since November 2025, ...
A campaign active since last November has been targeting Python developers building Telegram bots with trojanized Pyrogram ...
Three class-action lawsuits accuse a hacking group of publishing data that included personal and corporate information stolen ...
Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...
Ultrahuman’s user database was recently hacked, and the smart ring company says there was “no evidence of misuse.” On March 27, Ultrahuman experienced a security breach that allowed malicious actors ...
The Complete Ethical Hacking Course gives a strong introduction to cybersecurity with 29 hours of content across 320 lectures and a live ethical hacking lab where you practice what you’re learning in ...
If you’ve been hearing a lot more about passkeys recently, there’s good reason for it. After becoming more widely available in 2022, passkeys have surged in popularity, driven by ease of use and ...
Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to breach the servers running them and make off with sensitive data and ...
A hacker group stole data from more than 9,000 schools using an exploit in Instructure's service. Now the House Homeland Security Committee is getting involved. Tyler is a writer for CNET covering ...
Instructure says all stolen data returned and deleted after agreement with ShinyHunters ShinyHunters tells Reuters it will not target or extort Instructure or its customers House Homeland Security ...