The Oasis researchers document a vulnerability chain that can be initiated from any website the AI agent (or its user) visits ...

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.

This blog post will guide you through the essential steps to foster a security-first mindset within your business, no matter the size and whether you are just starting out or already well-established.

GhostClaw poses as an OpenClaw installer package, stealing system credentials and sensitive data before deploying a persistent RAT.

A data breach at data analytics company LexisNexis L&P has leaked the details of over 400,000 cloud profiles after an ...

IntroductionThreat actors often take advantage of major global events to fuel interest in their malicious activities. Zscaler ThreatLabz is diligently tracking a surge in cybercriminal activity that ...

A malicious npm package disguised as a legitimate AI tool to install the virally popular OpenClaw, but designed to steal system passwords and crypto wallets, has been identified by cybersecurity ...

Obtaining a geocoding api key marks the starting point for any location-based feature development. The process should be simple, but varies dramatically ...

Iran-linked MuddyWater hackers breached U.S. networks with new Dindoor malware as regional cyber attacks escalate amid Middle East conflict.

Oasis Security researchers find yet another security problem with the OpenClaw AI agent, with this one allowing malicious websites to silently take control of a developer's system and steal data.

Technology works both ways. It has enabled widespread access to data and information but has also increased exposure and made it easier for fraudsters to broaden their reach. They’re leveraging ...