Modern PDF platforms can now function as full attack gateways rather than passive document viewers.

ClickFix Campaign Abuses Compromised Sites to Deploy MIMICRAT Malware | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software ...

Over 260,000 users installed fake AI Chrome extensions that used iframe injection to steal browser and Gmail data, exposing ...

Vulnerabilities in PDF platforms from Foxit and Apryse could have been exploited for account takeover, data exfiltration, and other attacks.

AI tools are fundamentally changing software development. Investing in foundational knowledge and deep expertise secures your ...

US cyber security firm Proofpoint acquires AI security specialist Acuvity, expanding its platform to help organisations govern and protect AI agents, copilots and generative AI workflows.

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...

The malicious version of Cline's npm package — 2.3.0 — was downloaded more than 4,000 times before it was removed.

ChatGPT's new Lockdown Mode can stop prompt injection - here's how it works ...

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.