News

The Hacker News1h
How the Browser Became the Main Cyber Battleground
Browser-based identity attacks surge in 2025, targeting SaaS apps and weak credentials across enterprise accounts.
The Hacker News1h
Cybercriminals Use Fake Apps to Steal Data and Blackmail Users Across Asia's Mobile Networks
A massive mobile malware campaign targets Android and iOS users in Asia, stealing personal data through fake apps.
The Hacker News2h
Why React Didn't Kill XSS: The New JavaScript Injection Playbook
JavaScript injection attacks surged in 2024, hitting major brands via Polyfill.io. Learn why frameworks failed.
The Hacker News7h
CISA Adds PaperCut NG/MF CSRF Vulnerability to KEV Catalog Amid Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security vulnerability ...
The Hacker News19h
Hackers Breach Toptal GitHub, Publish 10 Malicious npm Packages With 5,000 Downloads
In what's the latest instance of a software supply chain attack, unknown threat actors managed to compromise Toptal's GitHub ...