News

Discord flaw lets hackers reuse expired invites in malware campaign
Hackers are hijacking expired or deleted Discord invite links to redirect users to malicious sites that deliver remote access ...
Dems demand audit of CVE program as Federal funding remains uncertain
It’s a cross-site scripting vulnerability present in open-source webmail platform Roundcube, and abuses a desanitization ...
Cryptopolitan on MSN12h
ZachXBT takes Elon Musk to task on risky XChat settings
ZachXBT took Elon Musk to task for the potential risks in XChat. The new chat platform to replace the current DM on X was ...
Why You Should Never Click Old Discord Invite Links
If you've received an invite link to Discord but never used it to join that specific server, don't click through it weeks or ...
The Hacker News11h
Discord Invite Link Hijacking Delivers AsyncRAT and Skuld Stealer Targeting Crypto Wallets
The fact that payload delivery and data exfiltration occur via trusted cloud services such as GitHub, Bitbucket, Pastebin, and Discord allows the threat actors to blend in with normal traffic and fly ...
Cryptopolitan on MSN2d
Discord invite link being used to deliver malware targeting crypto wallets
The new malware exploits a weakness in Discord’s invitation system to deliver an information stealer known as Skuld and the ...
Researchers Just Found a Big Security Flaw in Microsoft’s AI. Here’s Why Businesses Should Worry
Microsoft’s been inserting AI everywhere it can, including into some of the world’s most popular business productivity apps.
Patch Tuesday: Microsoft Patches 68 Security Flaws, Including One for Targeted Espionage
Security experts offer their takes on some of the flaws, including a set of vulnerabilities that could enable remote code ...
First Known Zero-Click AI Exploit: Microsoft 365 Copilot’s ‘EchoLeak’ Flaw
Security researchers uncovered “EchoLeak,” a zero-click flaw in Microsoft 365 Copilot, exposing sensitive data without user ...