Crazy ransomware gang abuses employee monitoring tool in attacks

A member of the Crazy ransomware gang is abusing legitimate employee monitoring software and the SimpleHelp remote support tool to maintain persistence in corporate networks, evade detection, and ...

OpenClaw: What it is and how to create your own autonomous AI agent.

Understand how this artificial intelligence is revolutionizing the concept of what an autonomous agent can do (and what risks ...

Who's the bossware? Ransomware slingers like employee monitoring tools, too

As if snooping on your workers wasn't bad enough Your supervisor may like using employee monitoring apps to keep tabs on you, but crims like the snooping software even more. Threat actors are now ...
Dark Reading

Attackers Use Windows Screensavers to Drop Malware, RMM Tools

By tapping the unusual .scr file type, attackers leverage "executables that don't always receive executable-level controls," ...

Moltbot is now OpenClaw - but watch out, malicious 'skills' are still trying to trick victims into spreading malware

OpenClaw, formerly Clawdbot and Moltbot, faces malware attacks as fake skills and extensions exploit trust in local AI tools.

Wave of Citrix NetScaler scans use thousands of residential proxies

A coordinated reconnaissance campaign targeting Citrix NetScaler infrastructure over the past week used tens of thousands of ...
Security Boulevard

OpenClaw Open Source AI Agent Application Attack Surface and Security Risk System Analysis

Background In early 2026, OpenClaw (formerly known as Clawdbot and Moltbot), an open-source autonomous AI agent project, quickly attracted global attention. As an automated intelligent application ...

Companies are using ‘Summarize with AI’ to manipulate enterprise chatbots

Here’s how the manipulation works: a user innocently clicks on a website Summarize button. Unbeknownst to them, this button also contains a hidden prompt telling the user’s AI agent or chatbot to ...
BetaKit

Q&A: Moltbook, OpenClaw, and the security risks of the new agentic-AI era

There is a class of attacks against all LLM systems called prompt injection, which Clawdbot is at risk of. Clawdbot, because ...

How To Leverage AI Coding Tools Without Sacrificing Code Quality

Engineering teams can’t afford to treat AI as a hands-off solution; instead, they must learn how to balance experimentation ...
The Hacker News

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

APT28 exploited a Microsoft Office flaw to deliver MiniDoor and Covenant Grunt malware in targeted attacks across Ukraine and Eastern Europe.