New ARToken Panel Targets Microsoft 365 Tokens
Security researchers at Cisco Talos have uncovered a phishing-as-a-service (PhaaS) platform called ARToken that appears to be closely linked to the previously identified EvilTokens infrastructure. The platform provides cybercriminals with [...]
CISA Flags SimpleHelp Flaw as Actively Exploited
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2026-48558, a critical vulnerability affecting SimpleHelp remote support software, to its Known Exploited Vulnerabilities (KEV) catalog. The listing confirms that [...]
Malicious Extension Swaps Crypto Wallet Addresses
Cybersecurity researchers have uncovered a sophisticated campaign distributing a malicious Chromium-based browser extension that silently replaces cryptocurrency wallet addresses during transactions. Disguised as a lightweight "Google Notes" extension, the malware [...]
Hackers Exploit Claude Code to Take Over Systems
Researchers from Mozilla's Zero Day Investigative Network (0DIN) have demonstrated a proof-of-concept (PoC) attack showing how a seemingly harmless GitHub repository can manipulate AI coding assistants such as Claude Code [...]
WhatsApp Introduces Usernames for Private Messaging
WhatsApp has introduced a new username feature designed to improve user privacy by allowing people to communicate without sharing their phone numbers. The update marks one of the platform's most [...]