SecurityWeek

New ‘StackWarp’ Attack Threatens Confidential VMs on AMD Processors

Dubbed StackWarp, the issue has been found to impact AMD Zen 1 through Zen 5 processors, enabling an attacker to hack ...

Credential-stealing Chrome extensions target enterprise HR platforms

Malicious Chrome extensions on the Chrome Web Store masquerading as productivity and security tools for enterprise HR and ERP ...
The Hacker News

Five Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack Accounts

Five fake Chrome extensions impersonate Workday and NetSuite to steal cookies, block admin controls, and hijack sessions for ...
SecurityWeek

WhisperPair Attack Leaves Millions of Audio Accessories Open to Hijacking

WhisperPair attack can be used to forcibly pair audio accessories that have improper Google Fast Pair implementations with ...

ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...
CSO Online

CrowdStrike to add browser security to Falcon with Seraphic acquisition

As generative AI reshapes browser usage, the acquisition will bring in-session browser security to the Falcon platform.

Why every AI agent is vulnerable to attack

AI agents are rapidly moving from experimental tools to trusted decision-makers inside the enterprise—but security has not ...
IEEE

STARFed: Link-Aware Defense Against Poisoning Attacks in Satellite-Terrestrial Federated Learning

Abstract: Satellite-ground integrated computation where ma chine learning models trained on satellites and aggregated on Earth offers novel opportunities for federated learning (FL). While satellites ...