Bug Bounty ShortsHacking AI Agents for $20,000
This article outlines a systematic approach to mastering AI application security, consisting of three phases: Understanding current AI models and their architecture, learning to steer language models through prompting, and studying AI attack scenarios with real payloads. The article provides guidance for each phase, including practical payload collections for testing. This article focuses on large language models (LLMs) as the core technology behind AI applications, capable of processing various media types. The lack of proper AI security can lead to vulnerabilities exploitation. Key lesson: Developing a systematic understanding of AI models and attack scenarios is essential for identifying and mitigating vulnerabilities. #BugBounty #AI #ArtificialIntelligence #SecurityResearch
Winbuzzerhttps://winbuzzer.com/2026/03/07/google-safe-browsing-missed-84-percent-phishing-sites-xcxwbn/
Google Safe Browsing Missed 84% of Phishing Sites
#Google #GoogleChrome #GoogleSafeBrowsing #WebBrowsers #PhishingAttacks #Cybersecurity #Cybercrime #Hackers #Malware #ThreatIntelligence #SecurityResearch #SecurityThreats #SecurityFlaws
School of Computer Sciencesπ£π« The 5th episode of #AIUnplugged is available on our YouTube channel !
The series explores how AI is already being used across industries globally β in business, research, humanitarian action, government, and planning.
ππ‘ This week, weβre diving into #AI and #cybersecurity with Kathrin Grosse, research scientist at #IBMResearch Zurich. Her work focuses on bridging the gap between AI #SecurityResearch and the problems that AI users face every day.
[AI Unplugged] AI in cyber security
TechNaduThreat model escalation: AI agent runtimes.
OpenClaw patched βClawJacked,β a localhost WebSocket hijack enabling:
β’ Admin-level agent takeover
β’ Configuration exfiltration
β’ Log enumeration
β’ Integrated system abuse
Additional risks documented across the ecosystem:
β Log poisoning β indirect prompt injection
β CVEs spanning RCE, SSRF, auth bypass
β Marketplace-delivered malware (Atomic Stealer)
β Agent-to-agent crypto scams
Microsoft guidance: treat OpenClaw as untrusted code execution with persistent credentials. Deploy in isolated VMs. Avoid sensitive data exposure.
Core lesson:
Agentic systems expand blast radius due to cross-tool integrations and credential persistence.
Question for defenders:
Are AI runtimes included in your EDR, credential rotation, and segmentation policies?
Source: https://thehackernews.com/2026/02/clawjacked-flaw-lets-malicious-sites.html
Engage below.
Follow TechNadu for advanced AI security analysis.
Repost to amplify awareness.
#Infosec #AIsecurity #OpenClaw #ClawJacked #ThreatModeling #ZeroTrust #CredentialManagement #SupplyChainSecurity #AgenticAI #CyberDefense #EDR #SecurityResearch
Meta initiates coordinated legal action targeting cross-border scam advertisers operating from Brazil, China, Vietnam.
Threat vectors observed:
β’ Celeb-bait campaigns leveraging synthetic media
β’ AI-assisted investment fraud funnels
β’ Cloaking to bypass ad review
β’ DNS manipulation via shadow resolvers
β’ HTTP-based traffic distribution systems
β’ Push notification abuse targeting Android Chrome
β’ Law firm impersonation clusters
Investigative findings indicate high advertiser concentration and shared infrastructure β suggesting organized, scalable fraud operations.
The enforcement move signals increasing willingness by platforms to pursue civil litigation alongside technical disruption.
From a defensive standpoint, what additional telemetry or cross-platform coordination is needed to meaningfully suppress these ecosystems?
Source: https://thehackernews.com/2026/02/meta-files-lawsuits-against-brazil.html
Engage in the comments.
Follow @technadu for advanced threat reporting.
Like and repost for wider awareness.
#Infosec #ThreatIntelligence #Meta #Malvertising #FraudOperations #CyberCrime #DigitalForensics #SecurityResearch #AdTechSecurity #PBaaS
Hacker NewsSandboxes won't save you from OpenClaw
https://tachyon.so/blog/sandboxes-wont-save-you
#HackerNews #Sandboxes #OpenClaw #Cybersecurity #Threats #TechNews #SecurityResearch
Incident Review: Alleged Breach at BookMyForex
BookMyForex, subsidiary of MakeMyTrip, faces allegations of a data breach after users reported unauthorized forex card activity.
Observed:
β’ USD & BRL debits
β’ Zero-balance wallet reflections
β’ Login access issues
β’ Escalation to Yes Bank
Official clarification: No confirmed data breach, categorized as unauthorized transaction attempts.
Potential vectors:
β Card network exploitation
β Automated fraud campaign
β External data exposure
β Payment processor vulnerability
Until technical transparency is published, this remains an active fintech incident case study.
Security professionals β whatβs your threat model?
Engage below.
Follow TechNadu for deep-dive infosec coverage.
#Infosec #FintechSecurity #AllegedDataBreach #FraudDetection #CyberIncident #ThreatModeling #DigitalPayments #IndiaCyber #SecurityResearch
Texas is taking legal action against TP-Link, alleging firmware vulnerabilities enabled exploitation by China-linked actor Camaro Dragon.
Beyond geopolitics, this case highlights:
β’ Firmware attack surface risks
β’ Supply chain governance challenges
β’ Security disclosure vs. marketing claims
β’ State-level cyber enforcement expansion
If regulatory scrutiny shifts toward vendor security representations, the industry may face stricter compliance obligations.
Source: https://therecord.media/texas-sues-tp-link-china-allegations
Are hardware vendors prepared for this enforcement era?
Comment with your technical assessment.
Follow Technadu for in-depth threat intelligence reporting.
#Infosec #FirmwareSecurity #ThreatActors #SupplyChainRisk #CyberEnforcement #SecurityResearch #RouterSecurity #CyberPolicy #BlueTeam #CyberDefense
Nelson | Security Researcherπ Public disclosure: CVE-2025-69690 & CVE-2025-69691
Two authenticated RCE vulnerabilities in Netgate pfSense CE:
CVE-2025-69690 (CVSS 8.8): Unsafe deserialization
β root RCE via backup restore (pfSense 2.7.2)
CVE-2025-69691 (CVSS 9.9): XMLRPC exec_php
β root RCE via default credentials (pfSense 2.8.0)
Vendor notified Dec 2, 2025. Acknowledged, no patch planned.
Responsible disclosure followed throughout.
Full write-up: https://github.com/privlabs/CVE-2025-69690-CVE-2025-69691
#CVE #pfSense #InfoSec #RCE #SecurityResearch
#ResponsibleDisclosure
Active phishing campaigns monitored by Netskope Threat Labs are leveraging high-frequency video conferencing workflows as an infection vector.
Attack chain:
- Pixel-perfect spoofed Zoom / Teams / Meet page
- βMandatory updateβ prompt
- Deployment of signed RMM agent (Datto, LogMeIn, ScreenConnect)
- Administrative persistence & lateral movement
Key concern: Abuse of legitimate, digitally signed RMM binaries to evade signature-based controls and blend into sanctioned enterprise traffic.
Detection challenge:
Distinguishing authorized RMM activity from malicious post-exploitation.
Source: https://www.netskope.com/blog/attackers-weaponize-signed-rmm-tools-via-zoom-meet-teams-lures
Are you enforcing strict RMM allowlists and monitoring outbound C2-like behavior within approved tools?
Engage below.
Follow @technadu for threat intelligence coverage.
#ThreatIntel #RMMAbuse #LivingOffTheLand #EDR #SOC #BlueTeam #Phishing #EnterpriseSecurity #ZeroTrust #IncidentResponse #CyberDefense #SecurityResearch
