Decrypt

What Is an AI Prompt Injection Attack? The Hidden Threat Hijacking Your Chatbots

Hackers can hijack ChatGPT, Claude, and Gemini with nothing but a sentence. OpenAI says the problem may never be fully solved.
Pro-Linux

Sicherheit: Mehrere Probleme in roundcubemail

Referenzen: https://www.cve.org/CVERecord?id=CVE-2026-48849 https://www.cve.org/CVERecord?id=CVE-2026-48845 https://www.cve.org/CVERecord?id=CVE-2026-48847 https ...
The Hacker News

ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...
Pro-Linux

Sicherheit: Mehrere Probleme in dovecot

Referenzen: https://www.cve.org/CVERecord?id=CVE-2026-27857 https://www.cve.org/CVERecord?id=CVE-2026-42006 https://www.cve.org/CVERecord?id=CVE-2026-40020 https ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
theregister

Microsoft Build: Surface RTX Spark Dev Box, Coreutils for Windows, air-gapped GitHub and more

Microsoft’s Build event is under way in San Francisco, USA, with the expected focus on agentic AI but also a few surprises, such as Unix-style Coreutils for Windows. CEO Satya Nadella presented ...
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The ...