Risk
-
OpenAI patches ChatGPT data leak bug, researchers say
OpenAI patched a ChatGPT flaw on February 20, 2026, after researchers said a malicious prompt could leak chat messages, uploaded files and other sensitive data through a hidden DNS-based channel.
-
DeepLoad malware uses ClickFix lure and WMI to spread and steal credentials
A new DeepLoad malware campaign is using ClickFix lures, Windows tools and WMI to steal credentials, hide activity and reinfect cleaned hosts, according to a technical analysis from ReliaQuest.
-
Apple adds macOS Terminal warning to block ClickFix attacks
Apple has added a macOS Tahoe 26.4 warning in Terminal that pauses risky pasted commands and alerts users to possible ClickFix attacks. The feature is aimed at stopping social engineering lures that trick people into running harmful instructions.
-
European Commission says attackers breached public web infrastructure
The European Commission said attackers broke into cloud systems hosting its Europa websites on March 24 and may have taken data. The sites stayed online, but officials gave few details about what was exposed.
-
Russian-origin CTRL toolkit spread through malicious Windows shortcut files, researchers say
Researchers say a Russian-origin toolkit called CTRL was spread through malicious Windows shortcut files disguised as private key folders. The malware adds phishing, keylogging, RDP hijacking and reverse tunneling while limiting network traces.
-
Three China-linked clusters targeted Southeast Asian government, researchers say
Researchers said three China-linked clusters targeted a Southeast Asian government organization in 2025, using several malware families and techniques aimed at staying inside networks for long-term access.
-
Intellexa founder says he will appeal Greek spyware conviction
Intellexa founder Tal Dilian said he will appeal his Greek conviction over a mass-wiretapping case tied to Predator spyware, which was used to hack phones belonging to ministers, opposition leaders, military officials and journalists.
-
Ajax says hacker accessed fan data and enabled ticket transfers
AFC Ajax said a hacker accessed parts of its systems and viewed email addresses for a few hundred people and personal details for fewer than 20 people with stadium bans. RTL journalists who were tipped off verified vulnerabilities that they said allowed ticket transfers and broad access to fan records; Ajax says it has patched…
-
UK sanctions Xinbi marketplace linked to Southeast Asian scam centres
The U.K. has sanctioned Xinbi, a Chinese-language marketplace accused of selling stolen data and cryptocurrency services to scam centres in Southeast Asia, and targeted the operators of a large scam compound known as #8 Park, as part of efforts to disrupt crypto-based money laundering and large-scale investment fraud.
-
Phishing campaign targets TikTok for Business accounts with bot-blocking pages
A phishing campaign is targeting TikTok for Business accounts with bot-blocking pages that redirect through Google Storage and use a Cloudflare Turnstile check, then present fake login pages designed to capture credentials and session cookies.
