Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...
The Hacker News

Researchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT Access

Cybersecurity researchers have discovered malicious Google Chrome extensions that come with capabilities to hijack affiliate links, steal data, and collect OpenAI ChatGPT authentication tokens. One of ...
The Mirror

Martin Lewis viewer gets call 'in 10 mins' after texting 3 letter code to mobile provider - slashing bill

A Martin Lewis Money Show Live viewer has said they texted a three letter word to their mobile company - and within 10 minutes they phoned him up and cut the price he was paying by more than half. On ...
GitHub

The fastest, most token-efficient way for AI agents to control Chrome.

Benchmarks in progress: Early testing shows 3x faster than agent-browser for a variety of usecases, but does not yet support as wide of a feature set. Experimental: Commands are stable, but their ...
GitHub

Google AI Mode Skill

Transform your LLM's online research capabilities by connecting Claude Code directly to Google's AI Mode—getting AI-synthesized answers from 100+ sources instead of scattered search results. "Next.js ...
The Hacker News

Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto

Cybersecurity researchers have disclosed details of a malware campaign that's targeting software developers with a new information stealer called Evelyn Stealer by weaponizing the Microsoft Visual ...