Eye Security explores an indirect prompt injection risk in OpenClaw’s WebSocket logging, explains what an exploit might look like, and highlights context, impact, responsible disclosure, and practical next steps for secure AI assistant deployments.

Complete timeline of every OpenClaw CVE, the ClawHavoc malware campaign, 42,000+ exposed instances, the Moltbook leak, and how to deploy safely.

How AI coding assistants are causing developers to leak credentials to public GitHub repositories and what you can do about it.

In a lawsuit on Thursday, the city attorney said tracking was used not just for local forecasts but also for commercial purposes like targeted marketing.

Learn how AI-powered scams work, the latest 2026 statistics on deepfake and voice cloning fraud, and how enterprises detect AI-enabled social engineering attacks.

Acronis' Threat Research Unit (TRU) has uncovered a malware campaign, dubbed CRESCENTHARVEST, potentially targeting supporters of Iran's ongoing protests with the goal of information theft and long-term espionage.

A platform for hosting realistic Android CTF hacking challenges. DroidGround provides fine-grained control, real-time device interaction, Frida scripting, Team based workflows and customizable exploitation scenarios.

Clinejection — Compromising Cline's Production Releases just by Prompting an Issue Triager - Security research by adnanthekhan

In October 2025, we performed a security assessment of the ARM-based Moxa UC-1222A Secure Edition industrial computer.

Engineering security at the undocumented layer of Windows.

Building CrowdStrike Falcon Fusion workflows with Claude Skills. What if you could just describe your security workflows?

Learn more about SafeBreach Labs discovery of CVE-2025-29969, a critical RCE vulnerability in the MS-EVEN RPC protocol in Microsoft Windows.

Jason Snitker, AKA Parmaster, has passed away. One of the sharpest and most elusive minds of the early underground hacking scene.

Most organizations run tabletop exercises and detection tests in isolation, creating blind spots that only show up during real incidents. Pairing a tabletop exercise with a TTP replay exposes the…

How a pre-installed system app turns saved locations into a persistent cross-session tracking identifier

Samsung devices ship with a weather application that issues periodic HTTP requests to The Weather Company's API (api.weather.com) at fixed intervals.…

Autonomous AI agents run 24/7 with shell access, network connectivity, and full filesystem permissions. We built Azazel, an eBPF-based…

A technical writeup on a 0day vulnerability I reported inside SpiderMonkey, Firefox's JS engine

There is a silent epidemic of ransomware attacks on commercial operational technology systems, which are mischaracterized as IT incidents even though they impact