Sign in Subscribe

AI Security & Threats

05
Mar
AI‑Powered Tycoon2FA Phishing Kit Bypasses MFA at Scale

AI‑Powered Tycoon2FA Phishing Kit Bypasses MFA at Scale

Microsoft uncovered Tycoon2FA, an AI‑enabled phishing kit that hijacks authentication flows in real time. The kit injects malicious JavaScript
1 min read
05
Mar
Hidden Web Scripts Hijack AI Agents via Indirect Prompt Injection

Hidden Web Scripts Hijack AI Agents via Indirect Prompt Injection

Researchers at Unit42 observed attackers placing specially crafted strings inside ordinary web pages—HTML, JavaScript, or comments—that are later
1 min read
05
Mar
AI‑Powered Tycoon2FA Kit Hijacks MFA at Scale

AI‑Powered Tycoon2FA Kit Hijacks MFA at Scale

Microsoft’s investigation uncovered the Tycoon2FA phishing kit, which uses artificial‑intelligence to perform real‑time man‑in‑the‑middle
1 min read
02
Mar
AI Model Theft and Roundcube Webmail Exploits Surge in March

AI Model Theft and Roundcube Webmail Exploits Surge in March

Checkpoint’s March threat report warns of a coordinated campaign that combines two distinct attack vectors. Adversaries are creating fraudulent
1 min read
02
Mar
Chrome Extension Hijack Exploits New Gemini Panel, Threatening Sessions and Prompt Data

Chrome Extension Hijack Exploits New Gemini Panel, Threatening Sessions and Prompt Data

Palo Alto Networks discovered that malicious Chrome extensions can intercept and manipulate the newly added Gemini panel. By injecting script
1 min read
25
Feb
AI‑Generated Malware Variants Flood 2026, Eroding Traditional Defenses

AI‑Generated Malware Variants Flood 2026, Eroding Traditional Defenses

CrowdStrike’s 2026 Global Threat Report shows threat actors now leveraging large language models to auto‑create thousands of code
1 min read
25
Feb
Claude Code Flaws Open AI Supply‑Chain to Malicious Template Injection

Claude Code Flaws Open AI Supply‑Chain to Malicious Template Injection

Researchers uncovered a set of vulnerabilities in Anthropic’s Claude Code platform that allow threat actors to embed malicious code
1 min read
25
Feb
Claude Code Flaw Lets Attackers Run Code and Steal API Tokens via Malicious Projects

Claude Code Flaw Lets Attackers Run Code and Steal API Tokens via Malicious Projects

Check Point researchers identified two critical bugs in Anthropic’s Claude Code AI‑assisted coding assistant. The vulnerabilities are triggered
1 min read
25
Feb
OpenClaw II Unleashes AI‑Powered Reverse Shells and Self‑Evolving Rootkits

OpenClaw II Unleashes AI‑Powered Reverse Shells and Self‑Evolving Rootkits

The latest VirusTotal deep‑dive on OpenClaw Part II reveals that the malware now incorporates generative‑AI modules to craft
1 min read
25
Feb
OpenClaw AI Skills Weaponized to Distribute Malware via Automation Tools

OpenClaw AI Skills Weaponized to Distribute Malware via Automation Tools

VirusTotal researchers have uncovered a campaign in which a prolific threat actor is publishing malicious “skills” on the OpenClaw AI
1 min read