AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.

We’ve talked before about number stations — mysterious shortwave transmitters repeating numbers, presumably for clandestine ...

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...

If you're looking to improve your garden watering setup, look to this ancient hack that uses a terracotta plant pot, some ...

The Chinese-speaking cybercrime group TA4922 has been escalating its malicious activities, expanding to Europe and Africa.

The flaw, which Meta said it had fixed, allowed anyone to take over accounts using a bug in the company’s new artificial ...

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...

Gong and other scholars have been issuing warnings about the security vulnerabilities of AI agents for a while. They publish ...

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...

A developer went viral for reconfiguring Chipotle’s customer support bot into a coding assistant, and providing the playbook ...

The malware, built to look like Minecraft launchers and mods, gives hackers access to your screen, files, webcam, accounts, ...