Researchers Uncover New Phishing Risk Hidden Inside Microsoft Copilot

Researchers reveal how Microsoft Copilot can be manipulated by prompt injection attacks to generate convincing phishing messages inside trusted AI summaries.
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.
The Tech Edvocate

Google Fortifies Looker Studio Against SQL Injection Threats

Spread the loveIn a significant move to enhance the security of its data analytics platform, Google has patched multiple SQL injection vulnerabilities in Looker Studio. This action, disclosed during ...
WeLiveSecurity

Award-winning news, views, and insight from the ESET security community

ESET’s Jake Moore used smart glasses, deepfakes and face swaps to ‘hack’ widely-used facial recognition systems – and he'll demo it all at RSAC 2026 The cybersecurity implications of the war in the ...