Skip to main content

Tag: browsersecurity

6 articles

ClawJacked Flaw: Exclusive Critical OpenClaw Hijack Alert

ClawJacked Flaw: Exclusive Critical OpenClaw Hijack Alert

Imagine the gatekeeper becoming the key: a critical flaw in the core OpenClaw gateway could let a malicious website reach across the browser and seize a local AI agent, and although OpenClaw has patched it, the bug is a stark warning about trusting connected AI services.

Analyst 207
HashJack Exclusive: Dangerous Injection Weaponizes Websites

HashJack Exclusive: Dangerous Injection Weaponizes Websites

Meet HashJack — a new technique that turns everyday websites into traps for AI‑enabled browsers and automated agents, tricking them into leaking session tokens and secrets with a convincing prompt. What feels like a harmless CAPTCHA or verification dialog can quietly hand attackers the keys to your account until those tokens are revoked.

Analyst 207
AI browsers Risky: Stunning Security Wake-Up

AI browsers Risky: Stunning Security Wake-Up

A new SquareX Labs analysis warns that AI browsers—promising smarter, hands‑free browsing—may open fresh security gaps by blending models, plugins and persistent state, creating new attack surfaces for credential theft and model poisoning. Users and enterprises should treat AI-driven suggestions cautiously and push for stronger sandboxing, permission controls and oversight before convenience outpaces safety.

Analyst 207
Chrome zero-day: Must-Have Critical Fixes

Chrome zero-day: Must-Have Critical Fixes

From a Chrome zero-day and AI-sped exploit tooling to an npm worm and unsettling DDR5 quirks, this week’s incidents prove attackers are iterating faster than fixes—so prioritize automated patching, supply-chain hygiene, and layered defenses before the next flaw becomes a blueprint.

Analyst 207
Chrome 0-day Emergency: Must-Fix for Risky Flaw

Chrome 0-day Emergency: Must-Fix for Risky Flaw

Google just pushed an emergency Chrome patch for a high‑severity zero‑day being actively exploited — please check your Chrome version and update now. This is the latest in a string of browser flaws that remind users and admins alike to stay vigilant and tighten protections.

Analyst 207
Scattered Spider: Must-Have Defense for Risky Browser Attacks

Scattered Spider: Must-Have Defense for Risky Browser Attacks

The browser is now the workplace front door—and groups like Scattered Spider are exploiting it with social engineering and account-takeover tricks. Enterprises can keep cloud-first convenience without handing over the keys by layering phishing‑resistant MFA, locking down extensions and OAuth grants, and monitoring browser telemetry.

Analyst 207