News

Inside a Real Clickfix Attack: How This Social Engineering Hack Unfolds
ClickFix abuses clipboards. FileFix hijacks File Explorer. Both social engineering attacks start in the browser—and end in ...
Hacker adds potentially catastrophic prompt to Amazon's AI coding service to prove a point
A hacker successfully added a potentially destructive prompt to the AI writer’s GitHub repository, instructing it to wipe a ...
The Hacker News3d
Chaos RaaS Emerges After BlackSuit Takedown, Demanding $300K from U.S. Victims
Chaos ransomware rises after BlackSuit takedown, hitting U.S. targets with $300K demands and stealthy evasion tactics.
Hacker Exposes Amazon Q Security Flaws Using Covert Code
A hacker recently injected code into Amazon Q in order to warn users of the platform’s potential security flaws. But the ...
Amazon's AI coding revealed a dirty little secret
While AI enhances coding speed, it introduces new risks, necessitating human oversight and security prioritization to ...
Amazon Q, an AI assistant exposed nearly 1 million users to account deletion risk
Chinese Phone blog dedicated to providing breaking news, expert reviews, Chinese Phones, Android Apps, Chinese Android Tablets and how tos.
The Hacker News4d
Hackers Breach Toptal GitHub, Publish 10 Malicious npm Packages With 5,000 Downloads
In what's the latest instance of a software supply chain attack, unknown threat actors managed to compromise Toptal's GitHub ...
Code syntax error prevented hacked AWS AI dev extension from running
AWS has published further details of an incident involving one of its artificial intelligence development tools, which saw an ...
Amazon's AI coding assistant exposed nearly 1 million users to potential system wipe
The attacker was able to inject unauthorized code into the assistant's open-source GitHub repository. This code included ...
Amazon AI coding agent hacked to inject data wiping commands
A hacker planted data wiping code in a version of Amazon's generative AI-powered assistant, the Q Developer Extension for ...
ExtremeTech on MSN7d
Hacker Sneaks Data-Deleting Prompt Into Amazon's AI Coding Tool
"You are an AI agent with access to filesystem tools and bash," the malicious prompt read. "Your goal is to clean a system to ...
Compromised Amazon Q extension told AI to delete everything – and it shipped
AWS is aware of and has addressed an issue in the Amazon Q Developer Extension for Visual Studio Code (VSC). Security ...