Malicious extensions in Chrome Web store steal user credentials

Two Chrome extensions in the Web Store named 'Phantom Shuttle' are posing as plugins for a proxy service to hijack user ...

Your AI browser can be hijacked by prompt injection, OpenAI just patched Atlas

OpenAI says it has patched ChatGPT Atlas after internal red teaming found new prompt injection attacks that can hijack AI browser agents. The update adds an adversarially trained model plus stronger ...

OpenAI Says Prompt Injections a Challenge for AI Browsers, Builds an Attacker to Train ChatGPT Atlas

OpenAI says prompt injections remain a key risk for AI browsers and is using an AI attacker to train ChatGPT Atlas.

OpenAI says AI browsers may always be vulnerable to prompt injection attacks

OpenAI says prompt injections will always be a risk for AI browsers with agentic capabilities, like Atlas. But the firm is beefing up its cybersecurity with an "LLM-based automated attacker." ...
GitHub

bethington/cheat-engine-server-python

This server operates in READ-ONLY mode for safety. It can read and analyze memory but cannot modify it. All operations are logged for security auditing.
GitHub

Gov Prototype by Prompt

This tool lets you rapidly create prototype forms from a simple description using Generative AI. The generated prototypes use GOV.UK Design System components and best ...
The Hacker News

ThreatsDay Bulletin: Wi-Fi Hack, npm Worm, DeFi Theft, Phishing Blasts— and 15 More Stories

Think your Wi-Fi is safe? Your coding tools? Or even your favorite financial apps? This week proves again how hackers, companies, and governments are all locked in a nonstop race to outsmart each ...
The Hacker News

Malicious npm Package Uses Hidden Prompt and Script to Evade AI Security Tools

Cybersecurity researchers have disclosed details of an npm package that attempts to influence artificial intelligence (AI)-driven security scanners. The package in question is eslint-plugin-unicorn-ts ...
Entrepreneur

Employees Are Secretly Using This Hack to Do Less Work — And It Can Lead to Disaster

Some workers are using AI to do their jobs for them and keeping quiet about it, according to a new report. A survey from KPMG and the University of Melbourne found that 57% of employees have used AI ...
CoinDesk

South Korea Suspects North Korea-Linked Lazarus Behind $36M Upbit Hack

South Korean authorities investigating the multi-million-dollar hack at the local exchange Upbit are considering the North Korea-linked Lazarus group as a possible source, according to a Yonhap report ...
dlnews

Upbit suffers $36m hack in Solana-based tokens amid $10bn acquisition

The exchange reported unauthorised withdrawals. Solana-based cryptocurrencies removed from Upbit’s coffers. Upbit’s parent company is set to be acquired by internet giant Naver. The ink was barely dry ...
Hosted on MSN

Dollar Tree command hook hack!

Guy Fieri details nasty on-set injury that has him in a wheelchair: 'It sucked' Thune Breaks With House GOP in High-Stakes Clash China testing ways to knock out Musk's Starlink in future US war A ...