AI Agents Open a New Frontier for Hackers: How Query Injections Threaten Cybersecurity
Experts warn AI agents could become hacker tools via query injection attacks, exposing users to major cybersecurity risks in the AI era.
Microsoft Uncovers “Whisper Leak”: AI Chatbots May Be Exposing Your Private Conversations
Microsoft reveals “Whisper Leak,” a major flaw in AI chatbots that exposes conversation topics despite encrypted connections.
Rust Foundation Launches Maintainers Fund to Support Core Developers and Strengthen the Rust Ecosystem
Rust Foundation unveils Maintainers Fund to financially support developers and maintainers ensuring the growth and stability of Rust.
Hackers Exploit Critical Post SMTP WordPress Plugin Flaw to Hijack Admin Accounts
Hackers exploit a critical Post SMTP plugin flaw to hijack WordPress admin accounts. Update to version 3.6.1 immediately.
Microsoft Uncovers “SesameOp” Malware Using OpenAI Assistants API for Covert Cyberattacks
Microsoft uncovers SesameOp malware using OpenAI Assistants API as a covert command channel for long-term cyber espionage operations.
Italian Spyware Vendor Memento Labs Linked to Chrome Zero-Day Attacks in Operation ForumTroll
Kaspersky links Chrome zero-day attacks to Italian spyware vendor Memento Labs, exposing Operation ForumTroll’s sophisticated malware network.
Hackers Exploit Outdated WordPress Plugins in Massive RCE Attack Campaign
Hackers exploit outdated WordPress plugins GutenKit and Hunk Companion in massive RCE attacks, targeting millions of vulnerable websites worldwide.
Automattic Countersues WP Engine Over WordPress Trademark Misuse and Bad Faith Negotiations
Automattic accuses WP Engine of trademark misuse, deceptive practices, and bad-faith negotiations in a growing WordPress legal dispute.
Spoofed AI Sidebars Expose Atlas and Comet Users to Serious Security Threats
Researchers warn that spoofed AI sidebars in Atlas and Comet browsers can trick users into dangerous, data-stealing actions.
Microsoft Confirms Windows Update Bug Causing Login Failures on Some PCs
Microsoft confirms Windows update bug causing authentication failures on systems with duplicate SIDs in Windows 11 and Server 2025.
TikTok ClickFix Attacks Spread Aura Stealer Malware Through Fake Software Activation Videos
Cybercriminals exploit TikTok with fake activation videos for Windows and Spotify to distribute Aura Stealer malware via ClickFix attacks.
Fake Google Ads Push Malicious Homebrew, LogMeIn and TradingView Sites Delivering macOS Infostealers
Google Ads amplified fake Homebrew and TradingView sites delivering macOS infostealers; security hygiene and caution with Terminal commands urged immediately
Bitcoin Core v30 Sparks Controversy Over OP_RETURN Limit Removal and Network Risks
Bitcoin Core v30 sparks heated debate over OP_RETURN limit removal, raising concerns about data abuse, legal risks, and network security.
Spotify’s AI Labeling Standard Could Redefine Transparency in Music Creation
Spotify supports new AI labeling standards, aiming to bring transparency, trust, and accountability to the rapidly evolving world of AI-generated music.
The Spy Who Came in from the Wi-Fi: How Radio Signals Are Turning Everyday Networks into Surveillance Tools
Researchers reveal how standard Wi-Fi networks can identify people without devices, exposing new privacy risks in everyday environments.
AI Breakthrough from University of Missouri Strengthens Global Chip Supply Chains Against Hidden Cyber Threats
University of Missouri researchers develop an AI method that detects hardware trojans in chips with 97% accuracy, securing global supply chains.
ClayRat Android Spyware Poses as WhatsApp and TikTok to Target Users with Advanced Phishing Tactics
ClayRat Android spyware mimics popular apps like WhatsApp and TikTok, stealing user data through Telegram phishing campaigns.
Critical WordPress Theme Exploit Lets Hackers Gain Admin Access — Over 13,000 Attacks Recorded
Hackers exploit a critical Service Finder WordPress theme flaw (CVE-2025-5947), gaining admin access. Over 13,800 attacks recorded.
Fedora Proposes AI Usage Rules to Balance Innovation, Security, and Ethics
Fedora proposes new AI usage rules for Linux development, balancing innovation, security, privacy, and ethics while ensuring human oversight.
Google Cloud Unveils Universal Ledger Blockchain for Financial Institutions
Google Cloud launches Universal Ledger blockchain for finance, enabling digital assets, smart contracts, and regulatory-compliant transactions with a 2026 rollout.
Microsoft Uncovers New XCSSET macOS Malware Variant Targeting Xcode Developers
Microsoft detects new XCSSET macOS malware variant targeting Xcode devs with crypto theft, browser attacks, and advanced persistence techniques.
