WhatsApp phishing attack spreads VBScript malware through fake business documents

A malware campaign is using compromised WhatsApp accounts to send fake business documents that hide VBScript files, leading to remote access on Windows PCs. The activity has been seen across multiple countries and uses localized filenames to trick recipients into opening the attachment.

Amazon Bedrock InvokeGuardrailChecks API: what it does and how it changes agent safety

Amazon says its new InvokeGuardrailChecks API for Bedrock Guardrails lets developers apply individual safety checks at specific points in an agentic workflow, without creating separate guardrail resources. The company says the API runs in detect-only mode and returns numeric scores so applications can decide whether to block, retry, bypass, or log.