OpenClaw has yet another major security flaw - here's what we know about 'ClawJacked'

Don't leave your OpenClaw with an easy password ...
CPO Magazine

Security Research Finds OpenClaw AI Agent “Trivially Vulnerable” to Hijacking

The Oasis researchers document a vulnerability chain that can be initiated from any website the AI agent (or its user) visits ...

Until last month, attackers could've stolen info from Perplexity Comet users just by sending a calendar invite

AI browsing agent left local files open for the taking If you wanted to steal local files from someone using Perplexity's ...
Techrights

Links 03/03/2026: "No one wants to read your AI slop" and "chatbots in the kill chain"

The circuit court now expects the Trump administration to file a brief by March 20 explaining why it appealed the district court’s ruling and for Kelly’s legal team to file its reply brief by April 27 ...
Cyber Daily

ALERT! Five Eyes nations release emergency directive over critical, exploited Cisco Catalyst SD-WAN Controller vulnerability

The Australian Signals Directorate’s Australian Cyber Centre joins its partners in warning of a Cisco flaw, as one expert ...
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 ...

Bitwarden adds support for passkey login on Windows 11

Bitwarden announced support for logging into Windows 11 devices using passkeys stored in the manager's vault, enabling phishing-resistant authentication.

Microsoft Flags Malware Delivery Tied to OAuth Login Phishing Campaign

The post Microsoft Flags Malware Delivery Tied to OAuth Login Phishing Campaign appeared first on Android Headlines.

Microsoft: Hackers abuse OAuth error flows to spread malware

Hackers are abusing the legitimate OAuth redirection mechanism to bypass phishing protections in email and browsers to take ...
Security Boulevard

Web Single Sign-On: Understanding WS-Federation

Master WS-Federation for enterprise SSO. Learn how Passive Requestor Profiles bridge legacy ASP.NET, SharePoint, and ADFS ...

How payment fraud evolved from ancient Roman coins to AI-deepfakes — and what's next

Although AI has introduced a new threat in the world of payments fraud, it has also emerged as the analytical backbone of next-generation fraud mitigation systems.
Infosecurity Magazine

ClawJacked Bug Enables Covert AI Agent Hijacking

Oasis Security reveals how a new ClawJacked vulnerability could allow attackers to silently take over a victim’s OpenClaw ...