ClickUp Data Leak Exposes Enterprise Emails for Over a Year

A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security ...

PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

What to know about how a suspect in the killing of two Florida students used ChatGPT

Prosecutors have revealed that a suspect in the deaths of two University of South Florida students asked ChatGPT about body ...
SecurityWeek

UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware

UNC6692 relies on email bombing and social engineering to infect victims with Snow malware: Snowbelt, Snowglaze, and ...
The Hacker News

ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories

ThreatsDay Bulletin: active exploits, supply chain attacks, AI abuse, and stealth data risks observed this week.

Suspect in murder of Florida college students asked ChatGPT about putting a person in a dumpster

The man accused of killing two University of South Florida doctoral students asked ChatGPT about putting a person in a trash ...

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

How indirect prompt injection attacks on AI work - and 6 ways to shut them down ...

Top open source PyPI package with over 1 million downloads each month hacked to send out malware

This was not a case of stolen credentials, but rather of vulnerability exploitation.

Court records: Suspect in USF doctoral students' murders used ChatGPT to search about body disposal

Court documents show the suspect in the murders of two USF students used ChatGPT to search for information about disposing of ...