A Russian-speaking threat actor known as "bandcampro" used Google's open-source Gemini CLI AI tool as a hacking agent and to ...
I tested Claude Code, Codex, and OpenCode on real full-stack work: a Next.js feature, a backend bug, a legacy refactor, and ...
I went hands-on with a desktop info panel that aims to protect your focus at work—but might make your colleagues hate you.
An exposed attack server led Lexfo to three Microsoft 365 phishing operations using Evilginx and device code abuse to capture ...
An exposed WP-SHELLSTORM server revealed tools, logs, cloud credentials, and thousands of webshells used in a large website ...
JadePuffer, a ransomware operation, used an AI agent to carry out much of the intrusion chain from reconnaissance, key theft, ...
The makers of the celebrated hacking tool explain why their new open-source device uses physical controls, low-resolution ...
Indirect prompt injection attacks are now draining cryptocurrency from AI agents in production. Zscaler ThreatLabz documented ...
QR code phishing – also known as quishing – has reached record levels in ESET telemetry. ESET analyzed nearly 900,000 AI ...
Computational journalist focused on data, policy, and public life. Chris Hacker is a computational journalist on The Washington Post’s national desk, analyzing data to understand how broad trends ...
AI coding agents ported Fields Medalist Terence Tao’s Java 1.0 math visualizations to JavaScript in hours, identified two ...
A single misconfigured server has exposed the complete toolkit of an active a three-actor phishing ecosystem. According to ...