Fake Google Security site uses PWA app to steal credentials, MFA codes

A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time ...
Security Boulevard

A fake FileZilla site hosts a malicious download

A tampered copy of FileZilla quietly contacts attacker-controlled servers using encrypted DNS traffic that can slip past ...

AI platforms can be abused for stealthy malware communication

AI assistants like Grok and Microsoft Copilot with web browsing and URL-fetching capabilities can be abused to intermediate command-and-control (C2) activity.

Experts warn Copilot and Grok can be hijacked to spread malware

Malware can blend in with legitimate AI traffic, using popular AI tools as C2 infrastructure.

AI chatbots with web browsing can be abused as malware relays

Check Point Research shows browsing-enabled AI chat can act as a malware relay, moving commands and data through normal-looking traffic. Microsoft urges defense-in-depth, while defenders may need ...

‘Resurge’ malware can remain undetected on devices

The malware can remain undetected on a system until a threat actor initiates a connection with the compromised device, a CISA ...
The Hacker News

Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies

Researchers show AI assistants can act as stealth C2 proxies, enabling malware communication, evasion, and runtime attack ...

Fake ad blocker breaks PCs in new malware extension scam

Chrome and Edge users warned about NexShield browser extension scam that causes crashes and tricks users into installing ...

Android malware hidden in fake antivirus app

Fake antivirus app TrustBastion uses Hugging Face to deliver Android malware that captures screenshots, steals PINs and shows fake login screens, according to Bitdefender.

Vibe coding service Lovable accused of hosting malware-ridden apps exposing thousands of users — it says they should take more care

Vibe coding platform Lovable has been accused of hosting insecure apps after security researcher Taimur Khan found one Lovable-showcased app (EdTech) to contain 16 vulnerabilities, six of which ...

Round-the-Clock Security Monitoring and Daily Backups Help Protect Business Websites from Evolving Cyber Threats

Most website breaches do not begin with dramatic warning signs...They start quietly, often through outdated plugins, ...

Android malware taps Gemini to navigate infected devices

For now, it might not function outside of a lab Cybersecurity researchers say they've spotted the first Android malware strain that uses generative AI to improve performance once installed. But it may ...