Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...
ZDNet

Move over, Claude: Moonshot's new AI model lets you vibe-code from a single video upload

Moonshot debuted its open-source Kimi K2.5 model on Tuesday. It can generate web interfaces based solely on images or video. It also comes with an "agent swarm" beta feature. Alibaba-backed Chinese AI ...

Claude LLM artifacts abused to push Mac infostealers in ClickFix attack

Threat actors are abusing Claude artifacts and Google Ads in ClickFix campaigns that deliver infostealer malware to macOS users searching for specific queries.
Politico

Trump’s acting cyber chief uploaded sensitive files into a public version of ChatGPT

The interim head of the country’s cyber defense agency uploaded sensitive contracting documents into a public version of ChatGPT last summer, triggering multiple automated security warnings that are ...