ChatGPhish shows how attackers can turn AI-generated web summaries into a phishing surface. Here’s why your team needs to treat AI links like untrusted content.
ChatGPhish shows how attackers can turn AI-generated web summaries into a phishing surface. Here’s why your team needs to treat AI links like untrusted content.
Attackers are using ChatGPT's own content sharing feature to host malicious pages on chatgpt.com, tricking users into downloading malware through Google Ads. The LLMShare campaign exploits the very domain trust we've spent decades building.
A critical vulnerability in Starlette, the Python framework behind FastAPI and most AI serving infrastructure, allows attackers to bypass authentication with a single manipulated character. Millions of AI agents and MCP servers are exposed.
Over 300,000 ChatGPT account credentials were stolen by infostealer malware in 2025. IBM's latest X-Force report reveals attackers are using AI to supercharge old tactics, not invent new ones. Here's what businesses need to do about it.
The NSA has published its first formal cybersecurity guidance targeting Model Context Protocol (MCP), the technology connecting AI assistants to your files, databases, and business systems. The finding: deployment has outpaced security, and real-world exploits are already happening.
GitHub confirmed 3,800 internal repositories were compromised after one developer installed a poisoned VS Code extension. The same hacking group has hit Trivy, Checkmarx, Bitwarden CLI, and TanStack in 2026 alone. Here's what it means for your team.
New research from Zscaler reveals employees transferred 18,033 terabytes of corporate data to AI apps in 2025, a 93% jump. Grammarly received more than ChatGPT. Here's what you need to do about it.
Verizon's 2026 Data Breach Investigations Report reveals a seismic shift: vulnerability exploitation, supercharged by AI, has overtaken stolen credentials as the top way attackers get in.
CISA has ordered federal agencies to patch two actively exploited zero-day vulnerabilities in Microsoft Defender within two weeks. Here's what you need to know and how to check if you're protected.
Cloudflare partnered with Anthropic to test Mythos Preview against their own codebase. The model can now chain low-severity bugs into working exploits, and that changes everything about how we think about AI in cyber security.
