Deeba Ahmed

1816 posts

Deeba is a veteran cybersecurity reporter at Hackread.com with over a decade of experience covering cybercrime, vulnerabilities, and security events. Her expertise and in-depth analysis make her a key contributor to the platform’s trusted coverage.

GrafanaGhost Vulnerability Allows Silent Data Theft via AI Injection

4 minute read

Security

GrafanaGhost Vulnerability Allows Data Theft via AI Injection

GrafanaGhost is a critical vulnerability in Grafana’s AI components that uses indirect prompt injection and protocol-relative URL bypasses to exfiltrate data.

byDeeba Ahmed

April 7, 2026

AI Agents and Non-Human Identities Creating Critical Security Gaps, Research Warns

2 minute read

Artificial Intelligence

AI Agents and Non-Human Identities Creating Critical Security Gaps, Report

New research from Keeper Security, reveals non-human identities and automated system-to-system interactions are becoming the top security risk for businesses in 2026.

byDeeba Ahmed

April 7, 2026

2 minute read

Missile Alert Phishing Exploits Iran-US-Israel Conflict for Microsoft Logins

New Phishing scam uses fake missile alerts and the ongoing conflict involving Iran to target users with QR codes and fake government emails to steal Microsoft passwords.

byDeeba Ahmed

April 6, 2026

3 minute read

Cloudflare Targets WordPress With New AI-Powered EmDash CMS

Cloudflare launches EmDash CMS, an AI-powered platform built to fix WordPress security flaws with sandboxed plugins, serverless scaling, and passkey auth.

byDeeba Ahmed

April 6, 2026

North Korean Group UNC4736 Linked to $285M Drift Protocol Theft

3 minute read

North Korean Hackers Pose as Trading Firm to Steal $285M from Drift

North Korean hackers (UNC4736) posed as a trading firm for six months to infiltrate Drift Protocol, using social engineering tactics to steal $285M without suspicion.

byDeeba Ahmed

April 6, 2026

LinkedIn Facing Controversy Over Alleged Computer Scanning

2 minute read

BrowserGate: LinkedIn Tracks 6,000+ Browser Extensions on Users’ PCs

LinkedIn is accused in the BrowserGate report of tracking 6,000+ browser extensions on users’ PCs, raising concerns over privacy and data collection practices.

byDeeba Ahmed

April 5, 2026

2 minute read

UNC1069 Targets Node.js Maintainers via Fake LinkedIn, Slack Profiles

North Korean group UNC1069 targets Node.js maintainers using fake LinkedIn and Slack profiles to spread malware and compromise open source packages.

byDeeba Ahmed

April 4, 2026

2 minute read

Fake ChatGPT Ad Blocker Chrome Extension Caught Spying on Users

A fake Chrome browser extension called 'ChatGPT Ad Blocker' was harvesting conversations of ChatGPT users in the name of offering an ad-free experience.

byDeeba Ahmed

April 3, 2026

3 minute read

North Korean Hackers Abuse GitHub to Spy on South Korean Firms

Researchers from FortiGuard Labs have uncovered a high-severity spying campaign targeting South Korean companies. Discover how North Korean…

byDeeba Ahmed

April 3, 2026

AI Firm Mercor Confirms Breach as Hackers Claim 4TB of Stolen Data

3 minute read

Data Breaches

AI Firm Mercor Confirms Breach as Hackers Claim 4TB of Stolen Data

AI firm Mercor confirms a breach linked to a LiteLLM supply chain attack, as hackers claim to have stolen 4TB of sensitive data and internal systems.

byDeeba Ahmed

April 3, 2026

The Latest

ShowDoc Vulnerability Patched in 2020 Now Used in Active Server Takeovers

Operation PowerOFF: 75K Users of DDoS-for-Hire Services Identified and Warned

Founder Liquidity Without Compromising on Growth

New RecruitRat, SaferRat, Astrinox, Massiv Android Malware Found Targeting 800 Apps

Deeba Ahmed

GrafanaGhost Vulnerability Allows Data Theft via AI Injection

AI Agents and Non-Human Identities Creating Critical Security Gaps, Report

Missile Alert Phishing Exploits Iran-US-Israel Conflict for Microsoft Logins

Cloudflare Targets WordPress With New AI-Powered EmDash CMS

North Korean Hackers Pose as Trading Firm to Steal $285M from Drift

BrowserGate: LinkedIn Tracks 6,000+ Browser Extensions on Users’ PCs

UNC1069 Targets Node.js Maintainers via Fake LinkedIn, Slack Profiles

Fake ChatGPT Ad Blocker Chrome Extension Caught Spying on Users

North Korean Hackers Abuse GitHub to Spy on South Korean Firms

AI Firm Mercor Confirms Breach as Hackers Claim 4TB of Stolen Data

Security Risk Advisors Purple Team Participants Can Now Earn CPE Credits

Mallory Launches AI-Native Threat Intelligence Platform, Turning Global Threat Data Into Prioritized Action

AI Future: The Leading International AI and Web3 Forum to Take Place in April

Cybersecurity Firm TAC Security Hits 10,000 Clients, Enters Top 5 in Global VM & AppSec

2026 Cybersecurity Excellence Awards Winners Announced during RSA Conference as AI Security Dominates