Blog
-
New Attack Chain Targeting Claude Involves “Invisible Prompt” Vulnerability
The attack chain relies on three specific vulnerability elements: an open redirect from the main Claude website that makes a malicious URL look like a legitimate link to the AI, a prompt injection in the attack URL that is not visible to the end user, and a means by which to exfiltrate requested data via…
-
iOS Exploit Chain Used by Hackers in Infostealer Attacks Since November 2025
Highly active threat actor making use of a new infostealer called DarkSword that incorporates zero-day vulnerabilities. The malware is an iOS exploit chain that is initiated simply by visiting an attack page with Safari.
-
Safety of All Social Security Data in Question After DOGE Whistleblower Complaint
The whistleblower claims that Solly’s plan for the alleged purloined social security data was to turn it over to his new employer, Fortune 500 firm Leidos. The anonymous source alleges that Solly copied the data in question from a thumb drive to a personal computer, then asked them about “sanitizing” it ahead of a planned…
-
Iranian “Hacktivist” Group Likely Behind Cyber Attack on Stryker Medtech Firm
A Iran-linked “hacktivist” group that has been active since at least 2023 has struck again, this time the cyber attack caused damage to the business operations of major medtech firm Stryker.
-
Signal & WhatsApp Phishing Campaign by Russian Spies Targets Government Sources and Journalists
The Dutch Ministry of Defence is warning that a likely state-backed Russian group is trawling Signal and WhatsApp with a phishing campaign targeting a broad range of government sources and sometimes journalists.
-
Trump “Cyber Strategy for America” Promises Enhanced Aggression Against Broad Range of Internet-Based Threat Actors
Rather than pushing technology developers and platforms to boost their defenses, the new Trump “Cyber Strategy for America” vision lays out a sort of “Donroe Doctrine” for the internet. The paper is short and not heavy on specific details, but the tone makes clear the focus is on increasing federal aggression against bad actors in…
-
FortiGate Device Breach Using Known Vulnerability Gave Attackers Unrestricted Access
A group of seemingly profit-minded criminal hackers has been spotted seeking out known FortiGate vulnerabilities and exploiting them to sell ongoing access to other threat actors, in at least one case setting up a fake administrator account with full access to all zones.
-
New Evidence Indicates North Korean Hackers Were Behind the Polyfill.io Supply Chain Attack
A 2024 cyber attack involving Polyfill.io was long assumed to be the work of Chinese hackers, but new evidence indicates it was more likely North Korea’s state-sponsored hacking teams making use of a Chinese front company.
-
FBI Surveillance Systems the Latest Target of Security Breach by State-Backed Chinese Hackers
State-backed Chinese threat actors have once again been linked to a high-profile security breach, this time of FBI surveillance systems used for foreign intelligence interception orders.
-
Time to Check Up on Old Google API Keys: New Gemini AI Exploit Could Cause Major Financial Damage
Most of the impacted Google API keys were put into place years ago (and prior to Gemini AI), when they were not at all the same sort of risk. Scans by security researchers have since found thousands of these exposed keys in webpage and app code that anyone can view.