Microsoft: Hackers abuse OAuth error flows to spread malware

Hackers are abusing the legitimate OAuth redirection mechanism to bypass phishing protections in email and browsers to take ...

Clueless cops post seized crypto wallet password. $5M quickly stolen.

Soon after South Korean police posted a press release boasting about seizing $5.6 million worth of cryptocurrency from 124 ...

Fake Google Security site uses PWA app to steal credentials, MFA codes

A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time ...

Google Lens Chrome Browser Tool Compromised To Steal Credentials

Chrome users have been warned that an tool claiming to search the screen with Google Lens was, in fact, a credential stealer. What you need to know.
SecurityWeek

OpenClaw Vulnerability Allowed Websites to Hijack AI Agents

An OpenClaw vulnerability allowed malicious websites to take over AI agents, exposing sensitive information and enabling data theft.

South Korean Police Lose Seized Crypto By Posting Password Online

The digital equivalent of snatching coins from someone's outstretched hands.
PC Magazine

Protect Your Accounts Instantly With This One Simple Password Tool

Every reused or weak password puts you at risk. I'm here to show you how to keep your accounts safe from hackers, phishing, and identity theft by using a password manager. I review privacy tools like ...