Dark Reading

LLM Hijackers Quickly Incorporate DeepSeek API Keys

Sophisticated "LLMjacking" operations have obtained stolen access to DeepSeek models, just weeks after their public release. Most recently, researchers from Sysdig observed hyperactive LLMjacking ...
Dark Reading

Fake AI Chrome Extensions Steal 900K Users' Data

Malicious Google Chrome extensions have stolen large language model (LLM) conversations and browser data from hundreds of thousands of users. Application security vendor Ox Security detailed a ...
Bleeping Computer

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...