New Helix extortion group steals SharePoint data after compromising Microsoft 365 accounts through voice phishing and MFA abuse.
A new data-extortion group called Helix is using identity-focused tactics such as voice phishing (vishing), device code ...
Google fixed Rogue Agent, a Dialogflow CX Code Blocks flaw that could let one writable agent affect every chatbot in a Cloud ...
JadePuffer exploited a vulnerable Langflow server, harvested credentials, moved laterally, and encrypted more than 1,300 ...
Rogue Agent, a vulnerability in Google Cloud Dialogflow CX, allowed attackers to control agents and exfiltrate sensitive data.
A threat group researchers call "Armored Likho" has gained access to government agencies and electrical power entities in ...
Digital security is crucial for journalists in Bangladesh ahead of the 2026 elections. Learn about risks and protective ...
Varonis reported the flaw to Google in late 2025 and it has been addressed, but it reminds defenders to take a look at their ...
Sophos says Claude Code, Cursor, and Codex triggered Windows endpoint rules for credential access, LOLBin downloads, and ...
According to Socket, malicious payment SDK packages on npm and PyPI are harvesting developer credentials and CI/CD ...
JadePuffer, a ransomware operation, used an AI agent to carry out much of the intrusion chain from reconnaissance, key theft, ...
A patched Google Dialogflow CX flaw shows why enterprise AI chatbots need stronger access controls, logging, and runtime ...