Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.

Source Code Exfiltration in Google Antigravity‍TL;DR: We explored a known issue in Google Antigravity where attackers can ...

All the nation-state hackers are vibe coding. Vibeware won't win any coding awards. It's not pretty. It doesn't target any ...

Using Anthropic and OpenAI's AI systems — and a detailed playbook prompt — cyberattackers gained access to Mexico's agencies ...

The idea was simple but transformative: prompt a Generative AI model—such as ChatGPT or Anthropic—to build a software program ...

It uses some of the oldest tricks in the book.

Malicious AI browser extensions posing as helpful assistants harvested ChatGPT and DeepSeek chat data from nearly 900,000 users, Microsoft says.

Just last year, Microsoft was severely impacted by a major round of layoffs that also resulted in a few casualties at its gaming division. One of the biggest surprises was the gaming giant’s ...

New malware spreads via fake GitHub downloads, stealing browser passwords, crypto wallets, Discord tokens, and credit card details from Windows users.

Scammers are using cloned versions of popular AI coding tools to spread info-stealing malware through fake installation ...

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users ...