Claude didn't just plan an attack on Mexico's government. It executed one for a month — across four domains your security stack can't see.

A hacker jailbroke Claude to steal 150GB of Mexican government data in a month-long campaign. CrowdStrike's latest threat report shows it's part of a wider pattern — and maps four domains most ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
DevPro Journal

Protecting your users from the 2026 wave of AI phishing kits

Discover why ISVs must implement identity-centric security and phishing-resistant MFA to stay ahead of modern AI-powered ...
Newsworthy.ai

THE AUTONOMOUS AGENT THREAT SURFACE --And the $25 Billion the Industry Is Spending to Detect Agent Threats Cannot Prevent What Happened Next

VectorCertain's analysis of the autonomous agent threat surface reveals that financial services are structurally unable to ...
Ecommerce Fastlane

Scale Your Shopify Store with Specialized Digital Marketing Services in 2026

Your data is lying to you without accurate performance tracking. You cannot scale what you cannot measure, and most Shopify merchants are making six-figure ...
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...
The Hacker News

Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware

Four rogue NuGet packages and one npm package stole ASP.NET Identity data, deployed C2 backdoors, and reached over 50,000 downloads before removal.
The Hacker News

UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor

Cisco Talos tracks UAT-10027 targeting U.S. education and healthcare with Dohdoor DoH-based backdoor and Cobalt Strike payload.