ShadowLeak Zero-Click Flaw Leaks Gmail Data via OpenAI ChatGPT Deep Research Agent

/in

Cybersecurity researchers have disclosed a zero-click flaw in OpenAI ChatGPT’s Deep Research agent that could allow an attacker to leak sensitive Gmail inbox data with a single crafted email without any user action.
The new class of attack has been codenamed ShadowLeak by Radware. Following responsible disclosure on June 18, 2025, the issue was addressed by OpenAI in early August.
“The attack

The Hacker News – ​Read More

Your passkeys could be vulnerable to attack, and everyone – including you – must act

/in

When a clickjack attack managed to hijack a passkey authentication ceremony, were password managers really to blame? ZDNET’s investigation reveals a more complicated answer.

Latest news – ​Read More

Scattered Spider Hackers Charged in Connection With Transport for London Attack

/in

Victims collectively paid more than $115 million in ransomware payments, law enforcement said.

The post Scattered Spider Hackers Charged in Connection With Transport for London Attack appeared first on TechRepublic.

Security Archives – TechRepublic – ​Read More

Patch Now: Max-Severity Fortra GoAnywhere Bug Allows Command Injection

/in

Exploitation of the flaw, tracked as CVE-2025-10035, is highly dependent on whether systems are exposed to the Internet, according to Fortra.

darkreading – ​Read More

Best early October Prime Day 2025 PC gaming deals: Save big on laptops and accessories

/in

October Prime Day is just around the corner, and you can already find great discounts on gaming desktops, laptops, and accessories at Amazon.

Latest news – ​Read More

Get the latest Amazon Fire tablet for $90 right now

/in

Give your kids a head start this school year without breaking the bank. The Amazon Fire HD 10 tablet is now on sale for $50 off, meaning you can score the newest tablet for under $100.

Latest news – ​Read More

Future of CVE Program in limbo as CISA, board members debate path forward

/in

Last week, CISA released two documents explaining their plans for the CVE Program — a critical cybersecurity resource used globally to catalog thousands of software and hardware bugs.

The Record from Recorded Future News – ​Read More

Capture the Flag Competition Leads to Cybersecurity Career

/in

As Splunk celebrates the 10th anniversary of Boss of the SOC competition, it continues to be a valuable platform for security professionals to test their skills, learn new techniques, and potentially advance their careers in cybersecurity.

darkreading – ​Read More

You can share Gemini Gems now – here’s how

/in

Google’s Gemini Gems act like custom helpers. Now, you can make them for your coworkers, friends, and family.

Latest news – ​Read More

Want Meta Ray-Ban Display glasses? You have to book a demo first – and they are going fast

/in

Booking a slot at Best Buy, LensCrafters, Sunglass Hut, and Ray-Ban stores will be the only way to purchase Meta Ray-Ban Display at launch on Sep. 30. And delays have already set in.

Latest news – ​Read More