ALERT

ACTIVE THREATS: Hightower Holding Data Breach Impacts 130,000 • Masters of Imitation: How Hackers and Art Forgers Perfect the Art of Deception • Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website • Russia arrests suspected owner of LeakBase cybercrime forum • Coruna iOS exploit framework linked to Triangulation attacks ACTIVE THREATS: Hightower Holding Data Breach Impacts 130,000 • Masters of Imitation: How Hackers and Art Forgers Perfect the Art of Deception • Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website • Russia arrests suspected owner of LeakBase cybercrime forum • Coruna iOS exploit framework linked to Triangulation attacks

⌕

🎙️ Podcast About

LIVE

🟡VulnerabilitiesHIGH

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Cybersecurity researchers have disclosed a vulnerability in Anthropic's Claude Google Chrome Extension that could have been exploited to trigger malicious prompts simply by visiting a web page. The flaw "allowed any website to silently inject prompts into that assistant as if the user wrote them," K

via The Hacker News·March 26, 2026·1h ago

SHARE:𝕏 IN

⚡

TL;DR – For the Busy Reader

Cybersecurity researchers have disclosed a vulnerability in Anthropic's Claude Google Chrome Extension that could have been exploited to trigger malicious prompts simply by visiting a web page.

Source attribution: via The Hacker News. HackWire aggregates and contextualizes publicly reported cybersecurity news for informational purposes.