This week in cybersecurity: stolen PlayStation accounts, AI chat transcripts sold by data brokers, tax-season scams, deepfake ...

The nonprofit that oversees Wikipedia briefly enforced a 'read-only' mode on Thursday morning as users spotted code designed to replace articles with Russian text.

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.

A final security update for Chrome 145 eliminates a handful of vulnerabilities, including some labeled critical.

Researchers with Truffle Security are warning that old and seemingly benign Google API keys might now be weaponized by threat actors after gaining Gemini AI authorization permissions, in a destructive ...

Security researchers at Google have exposed a powerful set of vulnerabilities for iOS called Coruna, which has hacked thousands of iPhone devices.A report from the Google Threat Intelligence Group ...

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...

The Oasis researchers document a vulnerability chain that can be initiated from any website the AI agent (or its user) visits ...

A high-severity Chrome vulnerability has allowed malicious extensions to exploit the Gemini panel and gain elevated access to ...

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

Over the past decade, security leaders invested heavily in two ideas: that bots were bad and users were predictable. Bot management and UEBA (user and entity behavior analytics) became the standard ...