The Hacker News

âš¡ Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.
The Hacker News

ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services

Cybersecurity researchers have disclosed details of a new campaign that combines ClickFix-style fake CAPTCHAs with a signed Microsoft Application Virtualization (App-V) script to distribute an ...
ZDNet

How a simple link allowed hackers to bypass Copilot's security guardrails - and what Microsoft did about it

Dubbed "Reprompt," the attack used a URL parameter to steal user data. A single click was enough to trigger the entire attack chain. Attackers could pull sensitive Copilot data, even after the window ...