The Hacker News

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.
Cyber DailyOpinion

Op-Ed: AI isn’t the threat, poor design is

It suggests that most real-world AI deployments are not as reckless as some narratives imply. The most common issues we ...

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.

Anthropic’s Claude found 22 vulnerabilities in Firefox over two weeks

In a recent security partnership with Mozilla, Anthropic found 22 separate vulnerabilities in Firefox — fourteen of them ...

The Operator Vault Publishes Free OpenClaw API Database for AI Agent Builders

The Operator Vault launches a free OpenClaw API database, giving AI agent builders a single reference for compatible ...

Arc Raiders bug was saving Discord private chats and login tokens in plaintext files

Developer Embark Studios has acknowledged that Arc Raiders' Discord SDK logged more user data than intended and issued a ...
SecurityWeek

OpenClaw Vulnerability Allowed Websites to Hijack AI Agents

An OpenClaw vulnerability allowed malicious websites to take over AI agents, exposing sensitive information and enabling data theft.