Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

OpenAI to create desktop super app, combining ChatGPT app, browser and Codex app

Fidji Simo, OpenAI's CEO of Applications, will oversee the change with assistance from OpenAI President Greg Brockman. OpenAI ...

Microsoft is threatening to sue Amazon and OpenAI over a $50 billion cloud hosting deal

According to an unnamed Microsoft insider quoted by Financial Times, the company is prepared to sue OpenAI and Amazon if they move forward with the deal.
GovInfoSecurity

Claudy Day Forecast: Chat Data Theft

Oasis Security researchers found three bugs in Claude that attackers can chain to steal user chat data without malware or ...

ConsentScout Launches Automated Scanner That Catches Cookie Violations Before Regulators Do

New tool scans websites in a clean browser session, flagging non-essential cookies that fire without consent and ...
InfoWorld

WebMCP API extends web apps to AI agents

W3C proposal backed by Google and Microsoft allows developers to expose client-side JavaScript tools to AI agents, enabling collaborative workflows between users and agents within the same web ...
Geeky Gadgets

Gemini’s Web Tool Makes Scrapers Look Outdated

What if extracting data from PDFs, images, or websites could be as fast as snapping your fingers? Prompt Engineering explores how the Gemini web scraper is transforming data extraction with ...
Bleeping Computer

Viral Moltbot AI assistant raises concerns over data security

Security researchers are warning of insecure deployments in enterprise environments of the Moltbot (formerly Clawdbot) AI assistant, which can lead to leaking API keys, OAuth tokens, conversation ...
PC World

Here’s why Windows 11’s Clipboard History sometimes misses copied items

There’s been an aggravating bug in Windows 11’s Clipboard History that sometimes causes it to miss what you’ve copied to it. Microsoft has given an explanation for it (spotted by Windows Latest), ...
The Hacker News

Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens

Cybersecurity researchers have disclosed details of a new malicious package on the npm repository that works as a fully functional WhatsApp API, but also contains the ability to intercept every ...
Hosted on MSN

OpenAI Confirms Mixpanel Breach Exposed Names, Emails Of Some API Users — Act Now

OpenAI has confirmed a data breach involving its third-party analytics tool, Mixpanel, that exposed names and email addresses for a portion of its API users. Because this sensitive information is ...