Latest news

Threat Actors Use AI Agents and Cursor IDE to Automate Active Directory Attacks and Beat EDR
Cybercrime

Threat Actors Use AI Agents and Cursor IDE to Automate Active Directory Attacks and Beat EDR

4 June 2026 dark6

Sophos has uncovered a Russian-speaking threat actor using AI-assisted tools, Cobalt Strike, and a purpose-built automated lab to develop EDR...
Read more 0
Five OpenClaw Zero-Days Let Attackers Silently Hijack AI Agent Access on Slack, Teams, and Discord
Vulnerability

Five OpenClaw Zero-Days Let Attackers Silently Hijack AI Agent Access on Slack, Teams, and Discord

4 June 2026 dark6

Researcher Philip Garabandic disclosed five zero-day vulnerabilities in OpenClaw allowing identity spoofing to hijack trusted AI agent access across Slack,...
Read more 0
GREYVIBE: Russian-Aligned Hackers Use ChatGPT and Google Gemini to Build Cyberweapons Targeting Ukraine
Cybercrime

GREYVIBE: Russian-Aligned Hackers Use ChatGPT and Google Gemini to Build Cyberweapons Targeting Ukraine

30 May 2026 dark6

A newly tracked threat actor called GREYVIBE is using generative AI tools including ChatGPT and Google Gemini to develop malware,...
Read more 0
CVE-2026-44338: PraisonAI Framework Actively Exploited Within Hours of Disclosure — No Auth Required
Vulnerability

CVE-2026-44338: PraisonAI Framework Actively Exploited Within Hours of Disclosure — No Auth Required

16 May 2026 dark6

A critical authentication bypass flaw in PraisonAI's legacy API server (CVE-2026-44338) shipped with auth disabled by default, allowing unauthenticated attackers...
Read more 0
Hackers Deploy AI-Generated Zero-Day Exploit to Bypass 2FA — Google GTIG Q2 2026 Report
Vulnerability

Hackers Deploy AI-Generated Zero-Day Exploit to Bypass 2FA — Google GTIG Q2 2026 Report

12 May 2026 dark6

Google's Threat Intelligence Group reveals that cybercriminals have used AI to develop a working zero-day exploit targeting a web administration...
Read more 0
InstallFix: Hackers Use Fake Claude AI Installer Pages and Google Ads to Deploy RedLine Stealer Malware
Malware

InstallFix: Hackers Use Fake Claude AI Installer Pages and Google Ads to Deploy RedLine Stealer Malware

10 May 2026 dark6

A malware campaign called InstallFix is using paid Google Ads to push fake Claude AI installation pages to the top...
Read more 0
Malicious DeepSeek-Claw AI Skill Delivers Remcos RAT and GhostLoader in Agentic AI Supply Chain Attack
Malware

Malicious DeepSeek-Claw AI Skill Delivers Remcos RAT and GhostLoader in Agentic AI Supply Chain Attack

7 May 2026 dark6

Zscaler ThreatLabZ has uncovered a campaign where attackers published a fake DeepSeek integration for the OpenClaw AI framework on GitHub,...
Read more 0
OpenAI API Users: Mixpanel Data Leak Exposes Personal Information
Databreach

OpenAI API Users: Mixpanel Data Leak Exposes Personal Information

27 November 2025 dark6

OpenAI, the renowned developer of AI models like ChatGPT, has recently acknowledged a data breach involving its third-party analytics provider,...
Read more 0
HashJack: weaponizing trust in AI browser assistants
AI

HashJack: weaponizing trust in AI browser assistants

26 November 2025 dark6

A vulnerability in the way AI browser assistants handle URL fragments opens doors for malicious attacks. For years, we’ve seen...
Read more 0
Malicious npm packages hijack macOS Cursor AI IDE
Vulnerability

Malicious npm packages hijack macOS Cursor AI IDE

9 May 2025 securebulletin.com

The Socket Threat Research Team has uncovered a sophisticated supply chain attack targeting macOS developers using the Cursor AI code...
Read more 0
Students are suing to stop access to sensitive financial aid databases by Department of Government Efficiency members
Business

Students are suing to stop access to sensitive financial aid databases by Department of Government Efficiency members

8 February 2025 securebulletin.com

A recent lawsuit filed by the University of California Student Association against the U.S. Department of Education highlights significant cybersecurity...
Read more 0
Texas governor bans DeepSeek and RedNote on government devices
Privacy

Texas governor bans DeepSeek and RedNote on government devices

1 February 2025 securebulletin.com

In a significant move reflecting heightened cybersecurity concerns, Texas Governor Greg Abbott has issued an order banning the use of...
Read more 0