How ‘Reprompt’ Attack Let Hackers Steal Data From Microsoft Copilot

Varonis found a “Reprompt” attack that let a single link hijack Microsoft Copilot Personal sessions and exfiltrate data; Microsoft patched it in January 2026.
The Hacker News

Security Bug in StealC Malware Panel Let Researchers Spy on Threat Actor Operations

Experts exploited an XSS flaw in StealC’s admin panel, exposing operator sessions, system details & stolen cookies without ...

ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...

Reprompt attack hijacked Microsoft Copilot sessions for data theft

Researchers identified an attack method dubbed "Reprompt" that could allow attackers to infiltrate a user's Microsoft Copilot session and issue commands to exfiltrate sensitive data.
Forbes

Porn Hack—Pornhub Warns Users ‘May Receive Emails’ From Hackers

Forbes contributors publish independent expert analyses and insights. Zak Doffman writes about security, surveillance and privacy. Pornhub’s warning that “a recent cybersecurity incident” impacts some ...
PlayStation LifeStyle

PSA: PSN Accounts Can Be Hacked Even With 2FA, Passkey Enabled

PlayStation’s security woes continue, as it has been recently reported that PlayStation Network (PSN) accounts can be hacked even if two-factor authentication (2FA) and a passkey are enabled. It seems ...