The Hacker News

27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials

Researchers uncovered 27 malicious npm packages used over five months to host phishing pages that steal credentials from ...

Unlock the power of hotline platforms and data analytics against fraud

Proactive monitoring tools, such as a third-party hotline platform and data analytics, coupled with employee engagement and a ...
Security Boulevard

Apple’s App Store Source Map Leak: A Preventable Vulnerability We Found in 70% of Organizations

Apple’s App Store source map leak shows a preventable risk we found in 70% of organizations shipping production web apps.

Zoom Stealer browser extensions harvest corporate meeting intelligence

A newly discovered campaign, which researchers call Zoom Stealer, is affecting 2.2 million Chrome, Firefox, and Microsoft ...

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...
GovInfoSecurity

Cryptohack Roundup: $7M Trust Wallet Hack

This week, a $7 million Trust Wallet extension hack, arrest of an ex-Coinbase support agent, the U.S. sued alleged ...
InfoWorld

Intro to Hotwire: HTML over the wire

This concept isn’t new—in fact, it is the essence of representational state transfer (REST). Instead of converting to a ...

3I/ATLAS was just a comet – but could we have defended ourselves if it was aliens?

But 3I/ATLAS is no ordinary rock – it’s a comet from beyond the solar system which greeted the Earth on December 19. It’s ...