Google Gemini Flaw Let Attackers Access Private Calendar Data

Security researchers found a Google Gemini flaw that let hidden instructions in a meeting invite extract private calendar data and create deceptive events.
The Hacker News

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...

Worried about AI privacy? This new tool from Signal's founder adds end-to-end encryption to your chats

Moxie Marlinspike, the mind behind the secure messaging app Signal, has launched an alternative to AI chatbot ChatGPT that focuses on user privacy and security. Also: The best free AI courses and ...

Fake ad blocker extension crashes the browser for ClickFix attacks

A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the ...

How I used GPT-5.2-Codex to solve a mystery bug and hosting nightmare - in under an hour

ZDNET's key takeaways A $20 ChatGPT Plus plan can handle real-world bug fixes.Codex helped identify both code bugs and ...

Malicious GhostPoster browser extensions found with 840,000 installs

Another set of 17 malicious extensions linked to the GhostPoster campaign has been discovered in Chrome, Firefox, and Edge ...
GitHub

ZYRA: Your Runtime Armor ️

ZYRA is a Zig-based obfuscator, packer, and loader designed to protect executable files from static analysis and reverse engineering. Written in Zig for performance and control 👌 Easy to install with ...
The Hacker News

PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense Forces

CERT-UA reports PLUGGYAPE malware attacks targeting Ukrainian defense forces via Signal and WhatsApp, using phishing links ...