Threat actors have made over 81 million login attempts in a massive password spray campaign targeting Azure CLI.
Named after BioShock's 'Would you kindly' mechanic, the attack trains AI agents to accept false information before stealing ...
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
LayerX tricked six AI browsers, including ChatGPT Atlas, Comet and Claude, into leaking user credentials by convincing them they were playing a game.
Arctic Wolf says Anubis affiliates abused RMM tools, VPN logins, RDP, PsExec, and cloud-transfer tools before ransomware ...
The attack exploited previously exposed credentials and flaws in enterprises’ multi-factor authentication configurations.
Attackers behind a password-spraying campaign targeting Microsoft Office 365 accounts have amassed dozens of victims by abusing a deprecated feature in OAuth 2.0 to ...
LayerX found that BioShocking could trick AI browsers into leaking credentials by disguising malicious prompts as game rules.
The attack abused misconfigured conditional access policies to bypass multi-factor authentication protections.