ShinyHunters claims 1.5 billion Salesforce records stolen in Drift hacks

The ShinyHunters extortion group claims to have stolen over 1.5 billion Salesforce records from 760 companies using compromised Salesloft Drift OAuth tokens.

New FileFix attack uses steganography to drop StealC malware

A newly discovered FileFix social engineering attack impersonates Meta account suspension warnings to trick users into ...

Roblox, Discord sued after 15-year-old boy was allegedly groomed online before he died by suicide

Ethan Dallas was targeted by an adult sexual predator on Roblox when he was 12, and later on Discord, according to a lawsuit.
SecurityWeek

Decade-Old Pixie Dust Wi-Fi Hack Still Impacts Many Devices

Many networking devices are still vulnerable to the Pixie Dust Wi-Fi attack method disclosed more than a decade ago.
CyberGuy

How AI browsers open the door to new scams

Agentic AI browsers fall for fake shops, phishing emails, and prompt injection scams in the new era of “Scamlexity.” ...