SecurityWeek

OpenClaw Vulnerability Allowed Websites to Hijack AI Agents

An OpenClaw vulnerability allowed malicious websites to take over AI agents, exposing sensitive information and enabling data ...
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in pages to attacker‑controlled infrastructure.

How Deepfakes and Injection Attacks Are Breaking Identity Verification

Deepfakes and injection attacks are targeting identity verification moments, from onboarding to account recovery. Incode explains why enterprises must validate the full session—media, device integrity ...

Alabama man pleads guilty to hacking, extorting hundreds of women

A 22-year-old Alabama man pleaded guilty to extortion, cyberstalking, and computer fraud charges after hijacking the social media accounts of hundreds of young women (including minors).

Was Jim Carrey's awards appearance fake? Here's what his rep says

Drag artist Alexis Stone is fueling conspiracy theories that an appearance by Jim Carrey at an award show in Paris isn't ...

Alabama man sexually extorted hundreds of teens: ‘The dangerous online stranger every parent fears’

A Mobile man pleaded guilty this week to charges of computer fraud, extortion, and cyberstalking. Jamarcus Mosley, 22, was charged after tricking hundreds of young victims into giving him control of ...
Infosecurity Magazine

ClawJacked Bug Enables Covert AI Agent Hijacking

Oasis Security reveals how a new ClawJacked vulnerability could allow attackers to silently take over a victim’s OpenClaw agent ...