Malicious Rust packages on Crates.io steal crypto wallet keys

Two malicious packages with nearly 8,500 downloads in Rust's official crate repository scanned developers' systems to steal ...
SecurityWeek

Salesforce AI Hack Enabled CRM Data Theft

Prompt injection has been leveraged alongside an expired domain to steal Salesforce data in an attack named ForcedLeak.

Hidden prompt injection: The black hat trick AI outgrew

Invisible prompts once tricked AI like old SEO hacks. Here’s how LLMs filter hidden commands and protect against manipulation ...

Hackers can now inject AI deepfakes directly into iOS video calls using this tool - here's how to stay safe

Hackers exploit specialized tool to inject AI deepfakes into iOS calls, bypassing cameras and challenging current identity ...