Until last month, attackers could've stolen info from Perplexity Comet users just by sending a calendar invite

AI browsing agent left local files open for the taking If you wanted to steal local files from someone using Perplexity's ...
The Hacker News

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

Chrome CVE-2026-0628 let malicious extensions hijack Gemini panel for privilege escalation, local file access, and ...
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...
Junior Mining Network

USA Rare Earth to Acquire Texas Mineral Resources

Transaction Establishes USAR as Exclusive Operator of the Round Top Heavy Rare Earth and Critical Minerals Project Round Top is North America’s ...
WinBuzzer

Chrome Gemini Flaw Let Rogue Extensions Hijack AI Panel

A high-severity Chrome vulnerability has allowed malicious extensions to exploit the Gemini panel and gain elevated access to ...

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages ...
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...

This free tool checks if a link is safe in seconds

With the online service URL Void, you can check whether a website is dangerous. Simply enter the URL, run a scan, and review the results from various security sources.

Fact Check: Breaking down false claim 'jerky' in Epstein files references human meat

As victims continued seeking justice for Epstein's crimes, online users claimed emailed mentions of food — jerky included — ...
CSO Online

Your personal OpenClaw agent may also be taking orders from malicious websites

A critical OpenClaw flaw allowed malicious websites to connect to locally running agents, brute-force passwords without ...
The Pricer

AI Agents Can’t See 87.6% of Your Website’s Commercial Content

When someone asks ChatGPT, Claude, Gemini, or Copilot to read a webpage, the AI decides what the user sees — not your layout, not your ad tags, and not your structured data. Most of what you put on ...