PCMag

Wikipedia Forced to Lock Down Edits Over JavaScript That Could Delete Pages

The nonprofit that oversees Wikipedia briefly enforced a 'read-only' mode on Thursday morning as users spotted code designed to delete articles and place Russian text in the edit summary.

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
Tom's Guide

Mullvad's new obfuscation combats one of the biggest drawbacks of using a VPN

VPNs NordVPN announces mobile app redesign – here's what you need to know VPNs Proton VPN announces UX updates for apps – here's what you need to know ...
iapp.org

IP obfuscation popularity undermines privacy compliance strategies

Editor's note: The IAPP is policy neutral. We publish contributed opinion and analysis pieces to enable our members to hear a broad spectrum of views in our domains. Not only has compliance become ...
TechCrunch

North Korean hackers stole over $2 billion in crypto so far in 2025, researchers say

Hackers working for the North Korean government have stolen more than $2 billion in crypto so far this year, according to blockchain analysis firm Elliptic. On Tuesday, Elliptic published a blog post ...
blockonomi

JavaScript Libraries with 2 Billion Weekly Downloads Targeted in Crypto Theft Attempt

18 popular NPM packages with over 2 billion weekly downloads were compromised through a phishing attack targeting developer “Qix” The malware functioned as a “crypto-clipper,” silently replacing ...
USNI

Operation Midnight Hammer Drops 14 Bunker Busters in Record B-2 Strike Against Iranian Nuclear Sites

DoD map of the Operation Midnight Hammer strike. This post has been updated with additional information from the Pentagon. A bomber mission of seven B-2 Spirit bombers and more than 30 Tomahawk Attack ...
Cyber Wire

Cloudflare’s cloudy day resolved.

Cloudflare says yesterday’s widespread outage was not caused by a cyberattack. Predator mobile spyware remains highly active. Microsoft is investigating ongoing Microsoft 365 authentication services ...
Oak Ridge National Lab

Privacy-Preserving Average Consensus With Beaver Triple and Communication Obfuscation

A privacy-preserving average consensus algorithm is proposed that synergizes the Beaver triple in secret sharing theory and noise obfuscation. The algorithm safeguards the initial values of agents ...
Seeking Alpha

Elavon and Jscrambler Partner to Strengthen PCI DSS Compliance for Merchants

More Than 400 Merchants Within the Network Gain Access to Jscrambler's Leading Client-Side Protection for Skimming Prevention and Compliance The client-side protection market is growing rapidly due to ...