China’s National Computer Network Emergency Response Technical Team warned that the open-source AI agent OpenClaw has weak default security settings that attackers could exploit to gain system control. Attackers can use prompt injection, embedding malicious instructions in web pages to trick the AI into leaking sensitive data. Researchers showed that features like link previews in […]
On Wednesday, August 14, 2024, Citizen Lab and Access Now issued a warning about spear-phishing attacks that are using ‘encrypted’ and ‘secured’ PDF files to lure victims to phishing sites. These sites aim to steal login credentials for Proton and Google accounts. According to these organizations, the attacks have been carried out by two groups […]