PCMag

Senate OKs Bill Allowing Victims of Sexually Explicit Deepfakes to Sue

Congress is trying again with the Disrupt Explicit Forged Images and Non-Consensual Edits (DEFIANCE) Act, which would allow ...
CSO Online

Output from vibe coding tools prone to critical security flaws, study finds

The assessment, which it conducted in December 2025, compared five of the best-known vibe coding tools — Claude Code, OpenAI ...

A single click mounted a covert, multistage attack against Copilot

Microsoft has fixed a vulnerability in its Copilot AI assistant that allowed hackers to pluck a host of sensitive user data ...

ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...

Reprompt attack hijacked Microsoft Copilot sessions for data theft

Researchers identified an attack method dubbed "Reprompt" that could allow attackers to infiltrate a user's Microsoft Copilot ...

Your Copilot data can be hijacked with a single click - here's how

Attackers could pull sensitive Copilot data, even after the window closed. Researchers have revealed a new attack that requires only one click to execute, bypassing Microsoft Copilot security controls ...
Opinion
CSO OnlineOpinion

The 2 faces of AI: How emerging models empower and endanger cybersecurity

AI helps security teams move faster — but it’s also helping attackers do the same, turning cybersecurity into a race of machines versus machines.