Trojan abuses Microsoft Phone Link app to steal your passwords

The CloudZ Trojan steals data through Microsoft Phone Link. The campaign has been active since at least January 2026.  Follow ...

CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs

A new version of the CloudZ remote access tool (RAT) is deploying a previously unseen malicious plugin called Pheno that ...
The Hacker News

ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows

ScarCruft spreads BirdCall via sqgame.net since late 2024, targeting Android users, enabling surveillance and data theft.
SecurityWeek

Hacker Conversations: Joey Melo on Hacking AI

Joey Melo explains how he uses jailbreaking and data poisoning to manipulate AI guardrails and harden machine learning models ...

Stealthy malware abuses Microsoft Phone Link to siphon SMS OTPs from enterprise PCs

A previously undocumented .NET trojan and its companion Pheno plugin allow attackers to capture mobile authentication codes ...
Infosecurity Magazine

CloudZ Malware Abuses Phone Link to Steal SMS OTPs

A Windows malware toolkit has been observed stealing SMS messages and one-time passwords (OTPs) from victim machines by ...
Android

Hack the Pixel's Titan M2 chip and you could net a massive bounty

Google is offering a huge bug bounty for anyone who is capable of hacking the Titan M2 chip used in current Pixel phones. Over on its ‘Bug Hunters’ blog, Google lays out the details for finding ...
Decrypt

Someone Built an Open-Source 'Theoretical Mythos' to Reverse-Engineer Anthropic's Most Dangerous AI

OpenMythos is a from-scratch attempt to reconstruct the architecture behind Claude Mythos, the model Anthropic refuses to ...
The Hacker News

⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More

Critical cPanel flaw under attack, Copy Fail Linux privilege escalation, TeamPCP supply chain campaign, GitHub RCE & major ...
Dark Reading

Attacks Abuse Windows Phone Link to Steal Texts & Bypass 2FA

Attackers are dropping the CloudZ RAT and a fresh plugin, Pheno, to hijack the Windows-based bridge between PCs and ...

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM ...

How ChatGPT conversations became ‘a treasure trove’ of evidence in criminal investigations

As the law stands now, your AI conversations can find their way from a computer into the courtroom.