The Hacker News

Self-Spreading 'GlassWorm' Infects VS Code Extensions in Widespread Supply Chain Attack

GlassWorm spread via 14 VS Code extensions; Solana + Google Calendar C2; stole credentials, drained 49 wallets.
PCMag on MSN

YouTube Videos About Game Hacks Were Used to Spread Malware

Security firm Check Point warns about a 'YouTube Ghost Network' that circulated malware via 3,000+ videos that claimed to ...

Delete the fake VPN app stealing Android users' money

Cleafy researchers discover fake VPN streaming app Mobdro Pro that installs Klopatra banking Trojan, giving attackers full ...

Spoofed AI sidebars can trick Atlas, Comet users into dangerous actions

OpenAI's Atlas and Perplexity's Comet browsers are vulnerable to AI sidebar spoofing attacks that mislead users into ...
NextBigFuture

AI Sidebar Spoofing Attack: SquareX Uncovers Malicious Extensions that Impersonate AI Browser Sidebars

SquareX released critical research exposing a new class of attack targeting AI browsers. The AI Sidebar Spoofing attack leverages malicious browser extensions to impersonate trusted AI sidebar ...