MIT Technology Review

AI is already making online crimes easier. It could get much worse.

Some cybersecurity researchers say it’s too early to worry about AI-orchestrated cyberattacks. Others say it could already be happening.

As SSL Validity Drops to 200 Days in March, SSL Dragon Warns: ‘Automation Alone Is Not a Safety Net’

SSL Dragon warns that the 200-day SSL validity shift in March 2026 will cause “silent failures” in enterprise automation if monitoring isn’t improved.

ANY.RUN Highlights Sharp Rise in Threat Activity and Phishing at Scale in Malware Trends Report 2025

DUBAI, DUBAI, UNITED ARAB EMIRATES, January 20, 2026 /EINPresswire.com/ -- ANY.RUN, a leading provider of interactive ...

300,000+ Chrome users installed these malicious extensions posing as AI assistants — delete them right now

Unsuspecting Chrome users put their browsing data at risk by installing these 30 extensions which promised quick access to AI ...
The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...
Security Boulevard

Outlook add-in goes rogue and steals 4,000 credentials and payment data

The once popular Outlook add-in AgreeTo was turned into a powerful phishing kit after the developer abandoned the project.
The Register-Herald

One Tech Tip: All you need to know about the iPhone's Lockdown Mode

Apple's Lockdown Mode is gaining attention after it blocked U.S. federal authorities from accessing a reporter's iPhone. The ...
The Hacker News

DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies

North Korean IT operatives use stolen LinkedIn accounts, fake hiring flows, and malware to secure remote jobs, steal data, and fund state programs.

DoS and malware attacks possible on IBM App Connect Enterprise

Multiple software vulnerabilities threaten systems with IBM App Connect Enterprise or WebSphere Service Registry and ...
Cryptopolitan

dYdX targeted as malicious packages empty its user wallets

Researchers have revealed that bad actors are targeting dYdX and using malicious packages to empty its user wallets.

Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX developers and backend systems and, in some cases, backdoored devices, ...