InfoWorld

What I learned as an undercover agent on Moltbook

Activity on the Reddit-style social network for OpenClaw agents raises serious cybersecurity and privacy concerns.
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 ...

Russian hacker uses multiple AI tools to break hundreds of firewalls

A low-skilled threat actor was able to do a lot with the help of AI, Amazon researchers warn.
The Hacker News

Microsoft Warns OAuth Redirect Abuse Delivers Malware to Government Targets

While some of the campaigns have been found to leverage the technique to deliver malware, others send users to pages hosted on phishing frameworks such as EvilProxy, which act as an ...
CSO Online

Your personal OpenClaw agent may also be taking orders from malicious websites

A critical OpenClaw flaw allowed malicious websites to connect to locally running agents, brute-force passwords without ...
InfoWorld

The browser is your database: Local-first comes of age

The thick client is making a comeback. Here’s how next-generation local databases like PGlite and RxDB are bringing ...

Phish of the day: Microsoft OAuth scams abuse redirects for malware delivery

Crims hope for payday from malicious payloads rather than stealing access tokens Microsoft has warned organizations about ...

Epicurrents—an open-source web browser application for clinical neurophysiology education and scientific research

Clinical neurophysiology examinations include electroencephalography, sleep and vigilance studies, as well as nerve ...

AI helps novice threat actor compromise FortiGate devices in dozens of countries

Generative AI tools analyzed target networks and wrote exploit code, enabling an opportunistic attacker to have an outsized ...

OpenAI’s AI coding app finally comes to Windows

Ready to start your vibe-coding adventure? A few weeks after its debut on Mac, the Windows version of OpenAI’s Codex app has finally arrived.
heise online

Sync-in Server 2.0: File-sharing platform now supports OpenID Connect

The self-hosted file-sharing platform Sync-in receives support for OpenID Connect with version 2.0. This facilitates integration into corporate IT. Sync-in Server is software for file storage, sharing ...