InfoWorld

WhatsApp API worked exactly as promised, and stole everything

Malicious npm package posing as a WhatsApp Web API library operated for months as a functional dependency while stealing ...
SecurityWeek

NPM Package With 56,000 Downloads Steals WhatsApp Credentials, Data

The lotusbail NPM package steals WhatsApp credentials, messages, and contacts, and provides persistent access to the victims’ accounts.

OpenAI’s Child Exploitation Reports Increased Sharply This Year

The company made 80 times as many reports to the National Center for Missing & Exploited Children during the first six months ...

The Future Of API Protection: Why Web And API Security Work Better Together

Modern security demands both the scale and performance of WAAP and the precision and lifecycle coverage of dedicated API ...

OpenAI says AI browsers may always be vulnerable to prompt injection attacks

OpenAI says prompt injections will always be a risk for AI browsers with agentic capabilities, like Atlas. But the firm is beefing up its cybersecurity with an "LLM-based automated attacker." ...