Technology ❯ Cybersecurity

Attack Vectors

Phishing Prompt Injection Social Engineering AI Tools Electromagnetic Attacks Cross-Prompt Injection Remote Desktop Protocol Multichannel Attacks PowerShell Attacks Sandbox Escape Living-off-the-land Email Phishing Remote Attacks Cross-Device Attacks ClickFix Tactics Remote Code Execution Web Application Attacks Ransomware-as-a-Service Bash Script Spring Onion Attack Phishing Emails ReVault Attacks SEO Poisoning JavaScript Loaders Traffic Distribution Systems Malware

CloudZ Malware Hijacks Microsoft Phone Link to Steal SMS Codes and Credentials

The finding shows cross-device syncing can leak login codes through the PC, prompting a shift to hardware security keys.

CrowdStrike Flags Cordial and Snarky Spider for Fast SaaS Extortion Campaigns

Google Patches Antigravity Flaw That Let Prompt Injection Break the Sandbox

OpenAI Fixes Codex Flaw That Let Malicious Git Branches Steal GitHub Tokens

Aryaka Uncovers ‘BlackSanta’ Malware That Kills EDR in Year-Long HR Resume Campaign

Huntress Uncovers 'CrashFix' Browser Extension That Crashes Chrome to Push ModeloRAT

Fake Booking.com BSOD Lures Install DCRat via MSBuild in European Hotel Hack

Crypto Theft Soared in 2025 Even as Attacks Fell Sharply, Year-End Analyses Find

CISA Flags Actively Exploited WatchGuard Firebox RCE as Patches and IoCs Roll Out

Memento Labs CEO Confirms Dante Spyware Ownership After Chrome Zero-Day Campaign Exposed

Microsoft Revokes 200+ Fraudulent Certificates Tied to Fake Teams Installers Used in Rhysida Attacks

Pro-Russian Hacktivists Fooled by Water-Plant Honeypot, Forescout Reveals

SEO-Poisoned Download Sites Deliver HiddenGh0st, Winos and New kkRAT to Chinese-Speaking Windows Users

ReVault Firmware Flaws in Over 100 Dell Laptops Publicly Disclosed, Patches Now Available

Microsoft Fixes Zero-Click EchoLeak Flaw in Copilot as Researchers Call for AI Agent Redesign

Digital Microphones Found Broadcasting Conversations via Electromagnetic Emissions