Claude didn't just plan an attack on Mexico's government. It executed one for a month — across four domains your security stack can't see.

A hacker jailbroke Claude to steal 150GB of Mexican government data in a month-long campaign. CrowdStrike's latest threat report shows it's part of a wider pattern — and maps four domains most ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
DevPro Journal

Protecting your users from the 2026 wave of AI phishing kits

Discover why ISVs must implement identity-centric security and phishing-resistant MFA to stay ahead of modern AI-powered ...
Newsworthy.ai

THE AUTONOMOUS AGENT THREAT SURFACE --And the $25 Billion the Industry Is Spending to Detect Agent Threats Cannot Prevent What Happened Next

VectorCertain's analysis of the autonomous agent threat surface reveals that financial services are structurally unable to ...
Ecommerce Fastlane

Scale Your Shopify Store with Specialized Digital Marketing Services in 2026

Your data is lying to you without accurate performance tracking. You cannot scale what you cannot measure, and most Shopify merchants are making six-figure ...
The Hacker News

APT28 Targeted European Entities Using Webhook-Based Macro Malware

APT28’s Operation MacroMaze used macro-laced documents and webhook.site to exfiltrate data across Europe from Sept 2025 to Jan 2026.
The Hacker News

UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor

Cisco Talos tracks UAT-10027 targeting U.S. education and healthcare with Dohdoor DoH-based backdoor and Cobalt Strike ...

QuickLens Chrome extension steals crypto, shows ClickFix attack

A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was ...