Microsoft

Malicious AI Assistant Extensions Harvest LLM Chat Histories

Malicious AI browser extensions collected LLM chat histories and browsing data from platforms such as ChatGPT and DeepSeek.
Security Boulevard

Anomalous Context Injection Detection in Post-Quantum Environments

Learn how to detect anomalous context injections in MCP deployments using post-quantum cryptography and ai-driven behavioral analysis to prevent puppet attacks.
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...
Communications of the ACM

Safe Coding

Safe coding is a collection of software design practices and patterns that allow for cost-effectively achieving a high degree ...
The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT ...
eLife

Contractile peri-nuclear actomyosin network repositions peripheral and polar chromosomes to promote early kinetochore–microtubule interactions

This important study demonstrates that a peri-nuclear actomyosin network, present in some types of human cells, facilitates kinetochore-spindle attachment of chromosomes in unfavorable locations - ...