Researchers Uncover New Phishing Risk Hidden Inside Microsoft Copilot

Researchers reveal how Microsoft Copilot can be manipulated by prompt injection attacks to generate convincing phishing messages inside trusted AI summaries.
Nature

An enzyme inside the bacterial-cell membrane chops up viral DNA on entry

When a virus infects a bacterial cell, the viral genome is the first component to be fully injected into the cell, making it an ideal immune target. A bacterial enzyme anchored to the membrane ...

AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.
Security Boulevard

Winning the AI Shortlist: GEO’s 70% Product Content Advantage

A 768,000-citation study reveals product content earns 46-70% of AI citations in B2B, while blogs get under 6%. Learn the GEO framework, content architectures, and 90-day action plan to earn AI ...
heise online

Pi-hole: Update closes security vulnerabilities and delivers more performance

The DNS-based ad blocker Pi-hole patches two security vulnerabilities in its updated version. Additionally, the programmers have implemented changes that boost performance, especially on older ...

Direct Prompt Injection: How Attackers Manipulate LLM Input

Direct prompt injection occurs when a user crafts input specifically designed to alter the LLM’s behavior beyond its intended boundaries.