My most useful Chrome extension was stealing my data for years

An extension I used almost every day was bought by a new owner and loaded up with spyware. It happened in 2024, but Google ...

Inside Jeffrey Epstein’s Push to Cleanse His Past Online

After he left jail in 2009, Mr. Epstein hired a host of people to make him look better on Google, Wikipedia and many other ...

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

New font-rendering trick hides malicious commands from AI tools

A new font-rendering attack causes AI assistants to miss malicious commands shown on webpages by hiding them in seemingly harmless HTML.

Tennessee teens sue Elon Musk's xAI over AI-generated child sexual abuse material

The three girls say that the nonconsensual nude images were created by a perpetrator who used AI company xAI's image ...
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

Navy veteran sentenced for conspiring to sexually abuse children

Cory Richard Hambley, 43, will serve 35 years in prison for conspiring to produce child sexual abuse material (CSAM) and ...
The Hacker News

Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware Attacks

AI-generated Slopoly malware used by Hive0163 in 2026 attacks maintained access for over a week, highlighting how AI ...

ESET Research: One of Russia’s most notorious groups, Sednit, resurges with spyware in Ukraine

ESET researchers have traced the reactivation of Sednit’s advanced implant team to a 2024 case in Ukraine, where a keylogger ...

Field Effect Report Finds Identity Compromise Driving Majority of Cyber Incidents

Field Effect has released its 2026 Cyber Threat Outlook, revealing that more than 80% of incidents investigated by the company in 2025 stemmed from cloud identity compromise. The finding highlights a ...

Users start malware: ClickFix attack campaign relies on Windows Terminal

In ClickFix attacks, victims are supposed to execute commands themselves to infect their systems. One campaign relies on Windows Terminal.