The vulnerability was discovered by the Cato CTRL research group of cybersecurity company Cato Networks and originates in common AI tools, including Google's Gemini, Microsoft's Copilot, and Perplexity's Comet.

The research demonstrated primary attack scenarios in which attackers direct AI assistants to display fake phone numbers and links to users when they request customer service contact information for various organizations. The scenarios included extracting sensitive user data and sending it to malicious sources without the user's knowledge, stealing login credentials, displaying false information, and creating fake narratives that could influence the user and lead to wrong decisions.

The technique used by attackers is called HashJack. All they need to do is add a prompt – malicious instructions – to a legitimate website address and distribute it. Once a user loads the website address with the malicious addition in the browser, the instructions "communicate" with smart AI assistants, such as Google's Gemini or Microsoft's Copilot, and trigger attack scenarios.

According to Cato Networks, traditional defense systems do not detect the attack because they operate through prompts (instructions) embedded in the website address after the hashtag symbol # in a process that does not leave the browser's work.

The attack exploits users' trust in legitimate websites by using link addresses that appear legitimate. The user has no reason to suspect at any stage of the process, unlike phishing sites that look suspicious. This way, any legitimate site could become an attack tool – with attackers not even needing to breach the site itself. They exploit how AI browsers interpret instructions after the hashtag symbol. This effectively creates a new subcategory of cyber threats in the AI world.

According to the company's statement, the companies whose tools the vulnerabilities were identified in were informed well in advance of the problems so they could address them before users were exposed to threats (a practice known in the cyber field as "white hat hacker" hacking). According to Cato's data, a fix was applied in the Copilot for the Edge browser on October 27, 2025. In the Comet browser, a fix was reported to have been applied on November 18, 2025. In the Gemini for Chrome browser, as of November 25, 2025, the problem has not yet been resolved.

The post Israeli tech firm finds AI vulnerability – Gemini susceptible appeared first on www.israelhayom.com.

https://t.co/l86238C0yh

— Benjamin Netanyahu - בנימין נתניהו (@netanyahu) November 21, 2025

The article also raised the conspiracy theory that Epstein was a Mossad agent, a claim that Israel has previously firmly denied. American commentator Megyn Kelly shared Netanyahu's tweet and wrote: "So I guess it's not antisemitic to ask if Epstein as an asset for Israeli intel and we shouldn't just take Ehud Barak's words for it that he wasn't."

Netanyahu's tweet, which has already garnered over 4 million views, reached the author of the article he shared: Branko Marcetic. Marcetic used Netanyahu's action as a supposed confirmation that Israel is committing genocide against children "on a world historical scale." The magazine Jacobin did not ignore this either and wrote: "While you're perusing our magazine in between ordering genocidal war crimes, Mr. Netanyahu, you might be interested in this piece by the same author." The headline of the article the magazine shared was: "Israel's Gaza war is one of history's worst crimes."

Mr. Netanyahu is sharing my work presumably to let everyone know he's not a child molester - just a child killer, on a world historical scale. https://t.co/DuFLQCDSzN pic.twitter.com/9fzC8Zsq16

— Branko Marcetic (@BMarchetich) November 21, 2025

Former Prime Minister Naftali Bennett tweeted against Netanyahu's move and responded similarly to Netanyahu's reaction to the actions of the IDF: "Sharing by the head of the Israeli government constitutes a huge boost and legitimization for a magazine full of accusations against Israel of genocide, apartheid, and war crimes. Israel's enemies, including the magazine itself, are already celebrating this as proof of the false conspiracies against Israel."

The post Netanyahu shares article from anti-Israel magazine linking Epstein to 2019 elections appeared first on www.israelhayom.com.

As reported, Elon Musk's social network began displaying users' locations and additional basic information, such as account creation dates and username changes. The goal is to enable the identification of fake behavior and bots impersonating real users, thereby improving credibility and transparency on the network. "We will provide people with enough context to determine if an account is authentic," the company said.

כולם שמים לחתונה האדומה ב-X ב-24 שעות האחרונות?

לאחר שהכריזו מוקדם יותר החודש על חשיפת המיקום של כל היוזרים ב-X, הפיצ׳ר נפתח לחלק מהחשבונות ואז נסגר לאחר מספר שעות (לי למשל הוא לא נפתח בכלל).

מה נחשף בינתיים?
בעיקר קמפיין ההשפעה של חשבונות אסלאם רדיקלי שמתחזים לחשבונות… pic.twitter.com/oe7guwSNGE

— Ella Kenan (@EllaTravelsLove) November 22, 2025

For example, user @noor_jomaa01 presented herself as a Gazan and raised tens of thousands of dollars, but it turns out her origin is actually from Nigeria. "Thanks to your support, we raised 42,000 dollars for our family in Gaza," she wrote alongside photos of her supposedly destroyed home. "Every donation and share is a lifeline. We still urgently need help with safe passage, medical treatment, and daily needs."

The prominent anti-Israeli X account "Khalisi," which was supposedly operated by a European user, was also exposed as an entity tweeting from Pakistan. Alongside this, numerous accounts of "journalists from Gaza" were exposed, who actually operate from the United States.

BREAKING: Thousands of "Palestinian" accounts posting daily about "starvation in Gaza" and "Israeli crimes" aren't based in Gaza.

You have manipulated for over two years. pic.twitter.com/hHjRtG98tM

— Eyal Yakoby (@EYakoby) November 23, 2025

Hasbara activist Ella Kenan, who lit a torch on Israel's 76th Independence Day, wrote Sunday morning, "Huge accounts in the West whose main content is Israel, spreading blood libels and more are actually in Pakistan, Bangladesh, and various other 'world gems,' and more accounts of 'journalists' from Gaza are actually located in Turkey or other places, just not in Gaza. This is what an activist warfare arena looks like. Does the State of Israel have a response to this issue? (No)."

She published a series of radical tweets from Iran, Poland, and even an account that presented itself as American but actually operates from Turkey. "How unsurprising, will there be additional surprises?" Kenan wondered. "This is bizarre if true, but also not shocking."

The post X's location feature exposes fake Gaza accounts appeared first on www.israelhayom.com.

The American headquarters in Kiryat Gat, which the US military defines as a Civil-Military Coordination Center (CMCC) in Israel, was established to oversee implementation of the Gaza ceasefire agreement. But while the agreement seems to be teetering, the impact of the foreign soldiers' presence – predominantly Americans – is already being felt throughout the city.

The headquarters is new and being set up at a rapid and impressive rate. The desire of their leaders to monitor developments closely explains the arrival of some many at the site. However, at this early phase, the crowds of soldiers, officers, and civilians still don't precisely know their purpose. Until Secretary of State Marco Rubio's arrival, they didn't even bother sitting at their computer workstations, and only when they approached the desks did someone issue an instruction to sit in chairs to create an appearance of "quiet, working."

The hundreds of people who arrived to serve at the facility still don't understand their role, for the straightforward reason that everything remains in organizational phases. Nobody possesses plans yet, not even vague ones, regarding future direction. They only have good intentions.

The American base established near Kiryat Gat introduces a new category of people distinct from the local environment. Beyond the delivery companies benefiting from new and hungry clients, dating apps are also suddenly displaying intriguing profiles of men and women in numbered uniforms who are interested in integrating and mingling with the Israeli public.

Restaurants throughout the city are also experiencing the shift. "They're very polite, not like Israelis," said Sheriel Drobitzky, who owns Cafe Plugot and the Geronimo hamburger restaurant in the city. "They love the food, come in groups and take over a table. The cafe also has cheeseburgers, which is different from other restaurants in the area."

Prime Minister Benjamin Netanyahu was expected to visit the American headquarters in Kiryat Gat Wednesday evening for the first time. The new base, anticipated to remain here for the next five years, is transforming the character of Kiryat Gat – complete details in the full article this weekend.

The post American troops reshape Israeli city: Tinder, burgers, and cultural clashes appeared first on www.israelhayom.com.

The Wednesday disruptions followed last week's Amazon AWS outage that caused worldwide chaos across thousands of sites including popular applications such as Snapchat and Reddit, according to Reuters. A recent configuration change to portions of Azure infrastructure triggered the service problems, with Microsoft 365 confirming downstream impacts on its applications, Reuters stated.

Microsoft 365 announced "We're pursuing multiple remediation strategies, including moving traffic away from the impacted infrastructure and blocking the offending change," Reuters reported from the company's status page communications.

By 1:07 p.m. ET, Microsoft 365 issues had declined to 4,332 users from nearly 11,700 earlier, while Azure problems dropped to 4,584 users from over 18,000 at peak levels, Reuters stated, citing Downdetector tracking data. Users encountered difficulties with the Microsoft 365 admin center, experienced delays accessing services, and faced Outlook problems including add-in and network connectivity issues, according to Reuters.

Azure's status page indicated the company had addressed customer access problems with the Azure Portal while continuing to investigate the underlying issue and evaluate additional mitigation actions, Reuters noted. Downdetector's figures derive from user-submitted reports, with actual affected user numbers potentially varying.

Last week's AWS disruption represented the most significant internet outage since the previous year's CrowdStrike malfunction that disabled technology systems across hospitals, banks and airports, exposing vulnerabilities in interconnected global technologies, Reuters reported.

The post Microsoft Azure outage recovers following brief disruption appeared first on www.israelhayom.com.

In the story she posted, Refaeli wrote: "Penelope Cruz, I'm sure you mean well, but when you compare the release of 20 Israeli hostages who were brutally kidnapped from their homes while asleep, or from a party while dancing (while more than 1,000 of their friends and family members were murdered!) to the release of 2,000 convicted terrorists!!!! What are you trying to say? What's the message? I can understand that you're happy this war – we never wanted! – Is over, but this is what you chose to message the world?"

The video that sparked the controversy

The video Cruz posted showed scenes of Palestinian prisoners being released and returning to their families. She did not include a caption or explicit commentary, but the sharing itself was perceived in Israel as a political statement.

This is not the first time the Hollywood star has expressed solidarity with the Palestinian side; Cruz previously sparked controversy when she signed a letter supporting "Free Gaza."

The 20 living hostages who had been held in Gaza since October 7, 2023, finally returned to Israel on Tuesday.

As part of the ceasefire agreement mediated by President Donald Trump, approximately 2,000 Palestinian prisoners were released simultaneously, including about 250 who had been convicted of serious offenses, including murdering Israelis, though most were administrative detainees without convictions.

The post Israeli model Bar Refaeli blasts Penelope Cruz over Instagram post appeared first on www.israelhayom.com.

The model's Instagram caption included a message for her audience: "I'm sorry I always go MIA I love you guys." Multiple images within the social media post showed Hadid receiving medical care in her hospital room, positioned beside a crocheted angel figure, consuming pizza, with additional photographs shared by the supermodel captured visits from relatives and companions, card game activities, with the final image showing her positioned in an elevator corner with wet hair while holding a coffee container.

Her mother, Yolanda Hadid, responded in the comment section, describing her daughter as a "Lyme warrior," and her sister, Gigi Hadid, contributed supportive words: "I love you! I hope you feel as strong and good as u deserve, soon!!!!!!"

View this post on Instagram

A post shared by Bella (@bellahadid)

Though specific reasons for the current medical stay were not provided, Hadid had previously described being "finally healthy" following "100+ days of Lyme, chronic disease, [co-infection] treatment [and] almost 15 years of invisible suffering" during 2023, according to AOL.

Medical diagnosis of Lyme disease occurred for Hadid during 2012, affecting both her mother, Yolanda, and younger brother Anwar. Her first public discussion about Lyme disease challenges while maintaining her modeling career took place in 2016 through an interview with People magazine.

During that interview, Hadid stated: "Life isn't always what it looks like on the outside," while noting that "the hardest part of this journey is to be judged by the way you look instead of the way you feel."

The post Bella Hadid reveals hospital stay in Instagram confession appeared first on www.israelhayom.com.

The outcomes are notably impressive, according to HT News Desk. They feature moody black sarees set against grainy film textures, flowing chiffon yellow fabrics that seem to float on cinematic winds, and even polka-dot white sarees that call to mind the glamour of movie posters from the Raj Kapoor era. With only a photograph and a well-crafted AI prompt, users are reimagining themselves as classic divas.

A guide to generating vintage saree AI images

To begin, download the Gemini application on a mobile device or access it on a desktop computer. Users must then log in using their Google account credentials.

Inside the Gemini interface, find the Banana icon and select the option labeled "Try Image Editing" to proceed to the next stage.

The next step involves uploading a photograph. It is recommended to choose a clear, individual portrait where the face is clearly visible, while avoiding group pictures or blurry selfies.

After uploading the image, a prompt must be added. Users can either copy and paste a viral saree prompt from online sources or compose their own. These prompts dictate all aspects of the final image, from the saree's color to the style of lighting.

Finally, click the generate button and allow a few seconds for processing. The AI will then produce the retro saree portrait, which is immediately ready for sharing on Instagram reels or stories.

Popular prompts for the Nano Banana tool

For an image featuring a black saree, a widely circulated prompt is provided by HT News Desk. The text reads "Convert this person into a retro vintage grainy but bright image, black party-wear saree, 90s film aesthetic… Lighting is warm, with golden sunset tones evoking golden hour glow."

To generate a portrait with a white saree, a different prompt is suggested. The instructions are to "Create a 4K HD realistic portrait of a woman in a translucent white polka dot saree… Small pink flower tucked behind her ear, soft serene expression, cinematic profile shadow."

For a red saree, another popular prompt directs the AI with the following text. It says to render the "Subject draped in an elegant red saree, with wavy hair cascading over shoulders, white flowers tucked behind the ear, warm-toned wall in background, retro artistic vibe."

The reason for the trend's popularity

The trend's immense appeal is rooted in its cinematic quality. Sarees inherently evoke a sense of nostalgia, combining elements of romance, fashion, and cultural significance. The resulting edits strongly resemble timeless Bollywood posters, appearing both stylishly modern and rich with memory. As millions of users participate, the trend demonstrates that AI is not merely a futuristic tool but can also resurrect the past with technicolor glamour, as noted by HT News Desk.

The post Nano Banana takes India by storm with saree portraits appeared first on www.israelhayom.com.

The fake card was used as bait. The hackers sent phishing emails disguised as requests to review a draft of a government employee's military ID. When recipients clicked the link to download the compressed file containing the supposed draft, they instead received malware. Once activated, the software installed the doctored ID image along with additional malicious files that enabled data theft and remote control of the infected devices.

The targets included journalists, academic researchers, and human rights activists focusing on North Korea. To boost credibility, the hackers sent the emails from an address ending in ".mli.kr," a domain crafted to mimic an official South Korean military address. The number of victims has not yet been determined.

A familiar spy unit with upgraded tools

The attack is believed to have been carried out by Kimsuky, a cyber-espionage unit suspected of operating under the orders of the North Korean regime. Kimsuky has been linked to multiple operations against South Korea. In 2020, the US Department of Homeland Security assessed that the group likely operates at the direction of Pyongyang and focuses on intelligence gathering worldwide.

It is not the first time Pyongyang has harnessed popular AI tools. In August, the US company Anthropic disclosed that North Korean hackers used its Claude Code platform to build fake identities, land jobs at major US tech firms, and even perform paid programming tasks. In February, OpenAI reported that it blocked accounts linked to attempts to create fake documents for recruitment and fraud.

Moon Chung-hyun of Genians said the case illustrates how cybercriminals are adapting cutting-edge technologies for malicious purposes, from planning attacks and developing malware to impersonating potential employers.

When Genians researchers attempted to replicate the process, ChatGPT initially refused to generate a forged government ID, citing South Korean law. But by rephrasing their request, they were able to bypass the restriction.

The US government has long warned that North Korea's cyber operations serve a dual purpose: espionage and revenue generation. By hacking computers, stealing cryptocurrency, and hiring programmers under false identities, the regime secures funds that help it evade international sanctions and advance its nuclear program.

The post This is North Korea's new AI-generated espionage tool appeared first on www.israelhayom.com.

The dramatic move illustrating the scale of the crisis that began in July now comes as Sephora, the global chain and exclusive North American retailer that has sold the brand's products since 2015, decided to remove Huda Beauty from the upcoming fall "Experts" campaign, according to reports on the media website Puck. The campaign represents one of the largest and most important makeup campaigns in the chain, designed to provide a platform for leading brands led by professional makeup artists.

The campaign expected to launch next September will include brands like Westman Atelier by Gucci Westman, One/Size by Patrick Star, Makeup by Mario by Mario Dedivanovic, and possibly the M.ph brand by Mary Phillips and Hung Vanngo, which will begin selling at Sephora on August 22 and September 8 respectively. The absence of Kattan ,41, who leads one of the best-selling makeup brands in the store, is nothing less than an earthquake for the beauty industry.

Kattan was supposed to serve as a central figure in the campaign with prominent visibility in storefront windows, at the front of stores, and on display tables. This represents one of the largest makeup campaigns of the year, with most brand activities built around the messages and visibility presented in it. Removing the brand from the campaign so close to launch is a complex and expensive logistical move reflected in significant changes to creative content, inventory, and internal and external communications updates. A source close to Sephora described it as "moving mountains" – a serious decision that signals red flags about the scale of the storm.

The video that sparked the storm 

The controversy began when Kattan shared a video on her TikTok with millions of her followers in July, in which she made false claims not supported by historical facts that Israel was responsible for World War I and World War II, the September 11 attacks, and the Hamas attack in October 2023.

The video gained wide exposure but also aroused much anger and criticism among Jewish communities and international organizations, including the Anti-Defamation League, which responded sharply and called for exposing the antisemitic narratives being spread. Following numerous reports, TikTok removed the video for what it justified as "violating platform rules."

Sephora, owned by luxury goods giant LVMH, initially maintained ambiguity and a cautious response. In early August, it published an official statement saying it was examining the situation and working in cooperation with the brand, and later updated that it had opened an internal investigation and clarified that promoting hatred, harassment, or false information stands in complete opposition to its values.

Following the storm, Kattan, known for frequently criticizing Israel and holding firm pro-Palestinian views, published a lengthy response video about two weeks ago in which she claimed her words were misinterpreted and that the original video was criticism of Israeli policy only, not about Jews or Judaism. According to her claim, she removed the video herself after seeing that its content had been altered, and she accused her critics of spreading a defamation campaign against her.

What happens from here?

Huda Beauty is one of the leading and most successful brands at Sephora, showing high double-digit growth this year compared to low growth in the overall makeup category in the market. Kattan, born in the US to parents of Iraqi origin, established in 2013 a brand that became an international empire with an estimated value of about $1.2 billion. In 2025, the brand continues to constitute the central anchor in Sephora's US sales. Although the brand is also sold on leading international websites like Harrods and Nykaa, it relies almost entirely on exclusive distribution through Sephora in North America.

Despite the dramatic move, removing the brand will not happen easily or quickly. Planning locations and campaigns at Sephora is done many months in advance, and the change and adaptation process is expected to take at least half a year. During this time, the chain must plan the placement of new brands that will duplicate the importance and consumer tendency of Huda Beauty, a particularly complex and challenging task.

The future presents both Kattan and Sephora with numerous conflicts. Sephora faces moral and business pressures simultaneously, and must decide between continuing the partnership with a brand that essentially brings it hundreds of millions of dollars in annual revenue, versus standing firm and adhering to its guiding values while considering the broader public reaction (which includes, alongside all those opposing her, millions of fans who support her).

Kattan herself also faces an internal crisis of trust that requires her to decide between hardening her position or attempting correction and compromise between her values and beliefs as a private person versus being a businesswoman generating billions in sales revenue.

The post Huda Beauty scandal continues with Sephora's dramatic decision appeared first on www.israelhayom.com.