The Register on MSN

OpenAI API moonlights as malware HQ in Microsoft’s latest discovery

Redmond uncovers SesameOp, a backdoor hiding its tracks by using OpenAI’s Assistants API as a command channel Hackers have ...
Cybernews

Hackers caught hiding malware instructions and data in OpenAI accounts

Hackers are exploiting OpenAI accounts and their Assistants API to covertly relay encrypted commands to compromised devices ...
Microsoft

SesameOp: Novel backdoor uses OpenAI Assistants API for command and control

Microsoft Incident Response – Detection and Response Team (DART) researchers uncovered a new backdoor that is notable for its novel use of the OpenAI Assistants Application Programming Interface (API) ...
Crypto Briefing

Eightco's Infinity authentication pilot integrates Coinbase for secure digital asset workflows

Eightco's INFINITY pilot now integrates Coinbase, providing AI-resistant, secure digital asset workflows for crypto platforms.
SecurityWeek

Claude AI APIs Can Be Abused for Data Exfiltration

Attackers can use indirect prompt injections to trick Anthropic’s Claude into exfiltrating data the AI model’s users have ...

OAuth Device Code Phishing: Azure vs. Google Compared

Azure can yield very powerful tokens while Google limits scopes, reducing the blast radius. Register for Huntress Labs' Live Hack to see live Microsoft 365 attack demos, explore defensive tactics, and ...
WinBuzzer

Anthropic Claude Flaw Lets Attackers Steal Data Using AI’s Own API

A critical vulnerability in Anthropic's Claude AI allows attackers to exfiltrate user data via a chained exploit that abuses ...