Crypto Thieves Steal Solana via Hidden Chrome Extensions

Socket’s Threat Research Team has outlined all the details.
Security Boulevard

Russian-Backed Threat Group Uses SocGholish to Target U.S. Company

The Russian state-sponsored group behind the RomCom malware family used the SocGholish loader for the first time to launch an attack on a U.S.-based civil engineering firm, continuing its targeting of ...
Dark Reading

Prompt Injections Loom Large Over ChatGPT's Atlas Browser

It's the law of unintended consequences: equipping browsers with agentic AI opens the door to an exponential volume of prompt ...

Critical Firefox Bug Leaves 180M Users Exposed

“Aisle’s autonomous AI system uncovered this subtle boundary-condition vulnerability during our WebAssembly security deep ...
Windows Report

Microsoft to Block External Script Injection in Entra ID Sign-In for Stronger Security

Microsoft has announced that it's working on a major security update for Entra ID that will block external script injection during authentication.