The Hacker News

Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability

Island found dormant JavaScript injection paths in Adblock for YouTube, a Chrome extension with 10M+ installs, raising ...
The Hacker News

CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a maximum-severity security flaw impacting Widget Factory Joomla Content Editor (JCE) to its Known Exploited ...
Decrypt

This AI Agent Survived 6,000 Hack Attempts—Here’s How

Developer Fernando Irarrázaval's AI agent experiment drew over 6,000 hack attempts from more than 2,000 attackers. No one ...

Critical Copilot vulnerability allowed hackers to steal 2FA code from users

Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the ...
Psychology Today

How to Hack Fear and Do Things That Scare You

A few years ago, I noticed my knee shaking when I climbed onto a stepladder. The thing wasn’t even a foot off the ground, and my body reacted like I was scaling Everest. I decided I had to do ...
Krebs on Security

Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts

The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions ...
Mashable

Hackers say that Meta AI helped them compromise big Instagram accounts

Hackers were able to trick Meta's AI into giving them access to any Instagram account they waned. Credit: Omar Marques/SOPA Images/LightRocket via Getty Images Meta — the parent company of Facebook, ...
Engadget

Meta's AI support chatbot made it ridiculously easy for hackers to take over Instagram accounts

Back in December, Meta announced a new AI support assistant it promised would make the account recovery process "faster and simpler" for people who had been locked out of their Facebook or Instagram ...
TechCrunch

OpenAI unveils Lockdown Mode to protect sensitive data from prompt injection attacks

OpenAI announced a new feature that it says will provide additional protection from prompt injection attacks, where malicious chatbot instructions are hidden in web pages and other content sources.

Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code

The controversy over vibe coding reached a new high this week after a developer added hidden instructions to his open source Java testing app to sabotage projects performed by AI coding agents. The ...
Hosted on MSN

Deal reached with hackers to delete data stolen from the Canvas educational platform

The company that operates online learning system Canvas said it struck a deal with hackers to delete the data they pilfered in a cyberattack that created chaos for students, many of them in the middle ...
Reuters

US shortens cyber fix window to three days as AI threats rise

WASHINGTON, June 10 (Reuters) - The U.S. cyber defense agency said on Wednesday that government officials now have three days to deal with the most ‌serious categories of digital vulnerabilities in ...