Google Chrome Users Warned As Hackers Target Gmail And YouTube Users

Google hackers strike as Gmail, YouTube, Telegram and TikTok users are targeted by 108 dangerous Chrome browser extensions in ...

GrafanaGhost: The AI That Leaked Everything Without Being Hacked

A newly disclosed vulnerability reveals how AI assistants can become invisible channels for data exfiltration — and why ...

Canadian companies need access to Anthropic’s Mythos before hackers arrive

Canadian companies, backed by the Bank of Canada and federal regulators, should be pounding the table for the same access to ...
SecurityWeek

OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack

OpenAI is one of many organizations affected by the recent Axios supply chain attack attributed to North Korean hackers.

$285 Million Hack Proved DeFi’s Decentralization Promise Is Still A Fiction

Somewhere between the first smart contract audit and the hundredth, the attack surface moved. Nobody noticed, except the ...
PCMag

This New Malware Lives on the Blockchain and Can't Ever Be Deleted. Here's What It Can Do

Hundreds of thousands of credentials from hundreds of companies are already compromised. Experts warn the campaign could ...
Hackaday

This Week In Security: Flatpak Fixes, Android Malware, And SCADA Was IOT Before IOT Was Cool

Rowhammer attacks have been around since 2014, and mitigations are in place in most modern systems, but the team at gddr6.fail has found ways to apply the attack to current-generation GPUs.
The Hacker News

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

Iran-linked actors target U.S. PLCs using Dropbear and SSH access, disrupting OT systems across sectors and escalating cyber ...

Techie Tonic: Two CISOs warn Axios breach changes supply chain trust model

Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...
The Hacker News

$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation

M stolen after six-month DPRK social engineering campaign began fall 2025, exposing Drift’s contributors and cloud assets.
The Caledonian-Record

Descendants of Choctaw code talkers gather in Fort Worth for historical marker unveiling

Nuchi Nashoba has worked for decades to honor the legacy of the Choctaw code talkers, a group of 19 Native American soldiers, including her great-grandfather, who used their language to ...
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...