Browser Security

RedKitten Campaign Steals Browser Data from NGOs & Activists

Nishant Sharma

01 Feb 2026 — 1 min read

This newsletter is AI generated and may hallucinate sometimes 😊

Iran-Linked RedKitten Campaign Targets NGOs with Browser Data Theft

A cyber campaign dubbed "RedKitten," linked to Iran, is actively targeting human rights NGOs and activists, particularly those focusing on Iran, with sophisticated social engineering and custom malware.
The campaign utilizes persistent communication and a custom .NET-based malware, "NekoBait," which includes a module specifically designed to exfiltrate sensitive browser information like history, cookies, and cryptocurrency wallet data.
The threat actor behind RedKitten employs highly personalized phishing and social engineering tactics, building trust with targets over weeks or months before delivering malicious payloads disguised as legitimate documents.

Source: The Hacker News | Date: January 31, 2026

References

Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and Activists - The Hacker News

Read more

Firefox & Foxit: New AI Privacy Controls and Critical JavaScript Flaws

This newsletter is AI generated and may hallucinate sometimes 😊 Mozilla Firefox Introduces One-Click Option to Disable Generative AI Features * Mozilla Firefox has added a new user-friendly option that allows users to disable all generative AI features within the browser with a single click. * This feature, currently rolling out in the

OpenClaw Bug Enables RCE; MoltBot Skills Exploited for Malware

This newsletter is AI generated and may hallucinate sometimes 😊 OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link * A critical vulnerability in the OpenClaw platform allows for one-click remote code execution (RCE) simply by coercing a user to click a malicious link. * The flaw stems from improper handling of

Browser Security: AI Vulnerability Hunt

This newsletter is AI generated and may hallucinate sometimes 😊 AI Models Demonstrate Enhanced Capability in Finding Software Vulnerabilities * New research indicates that custom AI-driven fuzzing tools can independently identify zero-day vulnerabilities, including those in browser JavaScript engines, within a short timeframe. * These advanced AI models exhibit the capacity to learn

Chrome Updates: Gemini AI Integration & API Security Patch

This newsletter is AI generated and may hallucinate sometimes 😊 Google Chrome Integrates Gemini AI for Enhanced Browsing and Smart Features * Google is integrating its Gemini AI model directly into the Chrome browser, aiming to enhance user experience with features like tab organization, content summarization, and query suggestions. * The integration leverages