A novel adaptation of the ClickFix social engineering technique leverages invisible prompt injection and prompt overdose to compromise AI summarizers embedded in email clients, browser extensions, and productivity platforms. By hiding malicious instructions in HTML content—using zero-width characters, white-on-white text, tiny fonts, and off-screen positioning—attackers can force automated summarizers to produce step-by-step ransomware deployment guides...Read More

A novel adaptation of the ClickFix social engineering technique has been identified, leveraging invisible prompt injection to weaponize AI summarization systems in email clients, browser extensions, and productivity platforms.  By embedding malicious step-by-step instructions within hidden HTML elements—using CSS obfuscation methods such as zero-width characters, white-on-white text, tiny font sizes, and off-screen positioning—attackers can poison...Read More

The U.S. is now the ransomware capital of the world.  Enterprises and organizations in the country are the targets of 50% of global ransomware attacks, according to a recent Zscaler ThreatLabz report, with manufacturing, technology and healthcare bearing the brunt. It gets worse: While ransomware attacks have climbed 146% in the past year, cybersecurity budget...Read More

The dialysis provider DaVita has confirmed the consequences of a serious security incident: Cybercriminals gained unauthorized access to company systems in April, compromising the data of around 2.7 million people. The security incident occurred on April 12, as DaVita explained in a data protection statement. The attack was mainly directed against network servers in the...Read More

Data I/O, an electronics manufacturer and software vendor for major automotive suppliers and tech firms, said its operations were disrupted in the wake of a ransomware attack earlier this month. The attack occurred Aug. 16, the company said in a regulatory filing Thursday.  “The incident has temporarily impacted the company’s operations including internal and external...Read More

The number of ransomware attacks that were observed and tracked during the first six months of 2025 was up by 179% – almost three times – on the same period in 2024, according to statistics published by threat intelligence platform provider Flashpoint. The past year has seen significant turnover among cyber criminal threat actors...Read More

By Gautam Debroy New Delhi: Data compiled by the Ministry of Home Affairs (MHA) has revealed that Southeast Asia has emerged as a hotspot for new illicit service ecosystems offering phishing kits, ransomware variants, deepfake technologies and even “money laundering as a service” to transnational criminal networks. “The increasing use of cryptocurrencies to facilitate anonymous...Read More

A criminal hacking gang has stolen business customer data from French telecommunications company Orange SA and posted it online, according to people familiar with the matter. The breach, which Orange disclosed and reported to national authorities at the end of July, targeted the company’s internal systems with ransomware associated with a gang calling itself Warlock,...Read More

Exclusive: Wyong Rugby League Club listed by Qilin ransomware gang Hackers claim to have compromised the personal & financial information of club members and employees. The Qilin ransomware-as-a-service operation has listed the Wyong Rugby League Club as a victim on its darknet leak site. The club was listed by the hackers on August 17, and...Read More

A recent ransomware attack on Colt Technology Services, a global telecommunications provider operating in over 30 countries, was claimed by the Warlock ransomware group. The breach began on August 12, 2025, and was publicly announced on August 14, with Warlock adding Colt to its leak site and offering the stolen data for sale on August...Read More