Bleeping Computer

Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into executing malicious JavaScript in their browser, allowing attackers to ...
Healthcare Dive

Express Scripts reaches ‘landmark’ settlement with FTC in insulin suit

The Federal Trade Commission has agreed to what it called a “landmark” settlement with Express Scripts, allowing the company to bow out of the agency’s lawsuit against major pharmacy benefit managers ...
The Hacker News

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

Threat actors have been observed exploiting a critical security flaw impacting the Metro Development Server in the popular "@react-native-community/cli" npm package. Despite more than a month after ...
HotHardware

Millions At Risk As Attackers Exploit This Alarming WinRAR Security Flaw

Remember the WinRAR path handling exploit we reported on back in August? According to Google, that same flaw, officially dubbed CVE-2025-8088, is still being actively exploited, even though versions ...
Live Science

Next-generation AI 'swarms' will invade social media by mimicking human behavior and ...

Artificial intelligence experts have warned that AI "swarms" are poised to infiltrate social media by deploying agents that mimic human behavior and exploit our tendency to follow the herd. When you ...
CoinTelegraph

Saga pauses chainlet after $7M exploit that depegged its stablecoin

Saga’s US dollar-pegged stablecoin has dropped to $0.75, while the protocol's total value locked has fallen by around 55% over the past 24 hours. Layer-1 blockchain protocol Saga has paused its ...
dlnews

Truebit hit by $26m exploit as attackers increasingly target older DeFi protocols

Truebit suffers a $26 million exploit. It comes as attacks targeting older DeFi protocols increase. Truebit, an Ethereum-based verification protocol, has been left reeling after a hacker stole $26 ...
Deadline.com

‘Weapons’: Read The Screenplay For Zach Cregger’s Horror Mystery That Turns A ...

Deadline’s Read the Screenplay series spotlighting the scripts behind the awards season’s most talked-about movies continues with Warner Bros‘ Weapons. Writer-director Zach Cregger described the ...
winbuzzer.com

Blockchain: AI Agents Now Exploit Zero-Day Smart Contract Flaws

AI agents have crossed a critical threshold in offensive cyber capabilities, successfully identifying and exploiting zero-day vulnerabilities in live financial contracts without human intervention. In ...
Benzinga.com

Could AI Agents Exploit Ethereum, XRP, Solana? Anthropic Says It's Possible

AI firm Anthropic says its latest tests showed AI agents autonomously hacking top blockchains and draining simulated funds, signaling that automated exploits may now threaten blockchains like Ethereum ...
CoinDesk

Anthropic Research Shows AI Agents Are Closing In on Real DeFi Attack Capability

AI agents are getting good enough at finding attack vectors in smart contracts that they can already be weaponized by bad actors, according to new research published by the Anthropic Fellows program.