Lending protocols are some of the most active DeFi apps. Due to the heavy usage of smart contracts, they are also the most at ...

From prompt injection to deepfake fraud, security researchers say several flaws have no known fix. Here's what to know about them.

Google Threat Intelligence Group (GTIG) has published a new report warning about AI model extraction/distillation attacks, in which private-sector firms and researchers use legitimate API access to ...

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked updates, fixed in v8.8.9 ...

Tens of thousands of human-made objects orbiting the Earth could pose a risk to life, infrastructure and the environment when they fall through the atmosphere. Typically the space debris is tracked ...

DeFi protocols must adopt a more principled approach to security to mature. They could use standardised specifications that constrain what a protocol is allowed to do. Many protocols are already ...

The world’s largest email platform may be using AI to access and exploit your private data, according to a class action lawsuit. That lawsuit was filed against Google in recent days, and NBC 5 ...

A while back, we stopped paying for Spotify. It wasn’t out of protest or principle—it was just one of those decisions you make when you realize how many monthly charges have crept into your life. We ...

As Disney has gone into business with OpenAI, the Mouse House is accusing Google of copyright infringement on a “massive scale” using AI models and services to “commercially exploit and distribute” ...

Scammers target veterans more frequently than the general public, a trend documented by consumer-protection groups and state agencies. AARP has found veterans are more likely than non-veterans to ...

North Korean hacking group Lazarus is suspected of being behind an exploit that saw 45 billion won (about $30 million) drained from South Korea’s largest crypto exchange Upbit on Thursday, Yonhap News ...

A China-nexus threat actor known as APT24 has been observed using a previously undocumented malware dubbed BADAUDIO to establish persistent remote access to compromised networks as part of a nearly ...