Bubble AI app builder abused to steal Microsoft account credentials

Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building ...

OpenAI pulls the plug on Sora, the viral AI video app that sparked deepfake concerns

OpenAI said Tuesday that it was "saying goodbye to the Sora app" and that it would share more soon about how to preserve what ...
Security Boulevard

That “job brief” on Google Forms could infect your device

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.
Opinion

Credential-stealing crew spoofs VPN clients from Cisco, Fortinet, and others

A group of cybercriminals tracked as Storm-2561 is using fake enterprise VPN clients from CheckPoint, Cisco, Fortinet, Ivanti, and other vendors to steal users' credentials, according to Microsoft.
The Hacker News

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Storm-2561 spreads fake VPN installers via SEO poisoning and GitHub downloads, stealing enterprise VPN credentials with Hyrax ...
Forbes

$9 Trillion Morgan Stanley Quietly Files For OCC Trust Charter

Bitcoin cryptocyrrency sign seen on a smartphone screen with the Morgan Stanley logo of US bank in the background. The wave of new national trust bank charters with digital-asset powers continues — ...