Dark Reading

Copilot 'SearchLeak' Attack Allows 1-Click Data Theft

The critical, three-stage attack is now patched, but it's part of a new group of AI prompt-injection issues that use hidden ...

Menlo Security's 2026 Browser Threat Report Finds 1 in 5 Enterprise Phishing Attacks Go Completely Undetected by the Security Tools Built to Stop Them

Menlo Security, the leader Browser Security for human and agentic workforces, today released its 2026 State of Browser ...
Forbes

New Warning As Microsoft 365 Attack Can Bypass Email Security

Beware this highly sophisticated Microsoft 365 attack. Update, March 15, 2025: This story, originally published March 13, has been updated with further technical detail regarding the Microsoft 365 ...
Dark Reading

Rise of LotL Attacks Calls for a New Defensive Strategy

Living-off-the-land (LotL) attacks — where adversaries exploit legitimate system tools to carry out malicious activities — are becoming increasingly prevalent and sophisticated. Bitdefender's internal ...
VentureBeat

The 11 runtime attacks breaking AI security — and how CISOs are stopping them

Enterprise security teams are losing ground to AI-enabled attacks — not because defenses are weak, but because the threat model has shifted. As AI agents move into production, attackers are exploiting ...
Bleeping Computer

Attackers are mapping your attack surface—are you?

Today’s threat landscape, attack surfaces are expanding faster than most security teams can track. Every new cloud asset, exposed API, forgotten subdomain, or misconfigured service becomes an ...
Bleeping Computer

New downgrade attack can bypass FIDO auth in Microsoft Entra ID

Security researchers have created a new FIDO downgrade attack against Microsoft Entra ID that tricks users into authenticating with weaker login methods, making them susceptible to phishing and ...
CRN

How Autonomous AI Cyberattacks Will Transform Security: Experts

The speed and volume of attacks enabled by AI agents is likely to quickly overwhelm the organizations that haven’t made a real investment in security, cybersecurity experts tell CRN. For cybersecurity ...
Forbes

New Gmail Account Attack Warning—Hackers Abuse Critical Security Check

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Check your Gmail account security now. Updated March 1, as hackers take aim at Google’s ...
WeLiveSecurity

Attacks on the education sector are surging: How can cyber-defenders respond?

We all want the best possible education for our children. But even the best-laid plans can come unstuck when confronted with an agile, persistent and devious adversary. Nation state-aligned actors and ...
Semiconductor Engineering

Hardware Security: Assessment Method For Attacks Using Real-World Cases (TU Wien, TÜV Austria)

A new technical paper titled “The Pains of Hardware Security: An Assessment Model of Real-World Hardware Security Attacks” was published by researchers at TU Wien and TÜV Austria. “We review some of ...