New CoPhish attack steals OAuth tokens via Copilot Studio agents

A new phishing technique dubbed 'CoPhish' weaponizes Microsoft Copilot Studio agents to deliver fraudulent OAuth consent ...

ChatGPT's AI Browser Has a Nasty Security Vulnerability

An ethical hacker demonstrated that ChatGPT Atlas is vulnerable to clipboard injection attacks. Atlas' agent mode might click ...

Don't be fooled by this massive YouTube scam network - how to protect yourself

Trust: As the example above highlights, even if a YouTube account has a large number of subscribers, that doesn't mean the content it posts is safe. A high follower count doesn't guarantee safety, and ...

Sharepoint ToolShell attacks targeted orgs across four continents

Hackers believed to be associated with China have leveraged the ToolShell vulnerability (CVE-2025-53770) in Microsoft ...