Researchers uncovered a CrashFix campaign where a fake Chrome ad blocker crashes browsers to trick users into installing the ...

The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade detection and gain trust.

ChatGPT has quietly gained bash support and multi-language capabilities, enabling users to run commands and install packages in containers without official announcements.

The attack consists of a NexShield malicious browser extension, a social engineering technique to crash the browser, and a ...

A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the ...

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...

A worker searching for an adblocker ended up installing malware instead after threat actor KongTuke pushed a fake Chrome ...

Knostic found 1,862 MCP servers exposed with zero authentication. Here are five actions CISOs should take now.

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations.

Clawdbot is a viral, self-hosted AI agent that builds its own tools and remembers everything—but its autonomy raises serious ...

Three vulnerabilities in Anthropic’s MCP Git server allow prompt injection attacks that can read or delete files and, in some ...