Vendors
-
GPUBreach attack can turn GPU Rowhammer bit flips into system takeover
Researchers at the University of Toronto say a new GPUBreach attack can use Rowhammer bit flips in GDDR6 GPU memory to corrupt page tables, gain GPU read and write access and potentially reach full system compromise.
-
Apple expands iOS 18.7.7 update to more iPhones and iPads after DarkSword attacks
Apple expanded iOS 18.7.7 and iPadOS 18.7.7 to more older iPhones and iPads on Wednesday to blunt DarkSword attacks, letting users install security fixes without first moving to iOS 26.
-
Microsoft Warns of WhatsApp Campaign Delivering Malicious VBS Files
Microsoft says a campaign that began in late February 2026 has used WhatsApp messages to spread malicious VBS files, then used renamed Windows tools and cloud services to help install persistent access on infected systems.
-
Google Drive ransomware detection enabled by default for paying users
Google said its AI-powered Google Drive ransomware detection is now generally available and on by default for paying users, with sync pausing, alerts and file restoration available after an attack is detected.
-
Anthropic employee error exposed Claude Code source code through npm package
Anthropic said an employee exposed Claude Code source code by including a source map in an npm package. The company called it a packaging error, while experts said such files can reveal logic, prompts and secrets.
-
GIGABYTE Control Center flaw could allow remote file writes on Windows systems
GIGABYTE Control Center has a critical arbitrary file-write flaw that could allow remote unauthenticated attacks on Windows systems with pairing enabled. The vendor has released version 25.12.10.01 to address the issue.
-
Apple adds macOS Terminal warning to block ClickFix attacks
Apple has added a macOS Tahoe 26.4 warning in Terminal that pauses risky pasted commands and alerts users to possible ClickFix attacks. The feature is aimed at stopping social engineering lures that trick people into running harmful instructions.
-
Intellexa founder says he will appeal Greek spyware conviction
Intellexa founder Tal Dilian said he will appeal his Greek conviction over a mass-wiretapping case tied to Predator spyware, which was used to hack phones belonging to ministers, opposition leaders, military officials and journalists.
-
Startup Delve accused of supplying fake compliance evidence to customers
An anonymous Substack post accuses Delve of supplying fabricated compliance evidence to hundreds of customers, potentially exposing them to HIPAA criminal liability and GDPR fines. The company posted a blog response calling its product an automation platform.
-
Researchers find flaw that could let websites inject prompts into Anthropic’s Claude Chrome extension
Researchers disclosed a flaw called ShadowPrompt in Anthropic’s Claude Chrome extension that combined an overly permissive origin allowlist and a DOM-based XSS in an Arkose Labs CAPTCHA, allowing websites to inject prompts; Anthropic and Arkose issued fixes in December 2025 and February 2026.
