The Hacker News

Malicious Chrome Extension Steals MEXC API Keys by Masquerading as Trading Tool

A malicious Chrome extension posing as a trading tool steals MEXC API keys, enables withdrawals, and sends credentials to ...

Credential-stealing Chrome extensions target enterprise HR platforms

Malicious Chrome extensions on the Chrome Web Store masquerading as productivity and security tools for enterprise HR and ERP ...

Browser-based attacks hit 95% of enterprises — and traditional security tools never saw them coming

Omdia research shows 95% of organizations faced browser-based attacks last year. CrowdStrike's CTO and Clearwater Analytics' ...
Computer Weekly

Wave of ShinyHunters vishing attacks spreading fast

The ShinyHunters hacking collective that caused chaos in 2025 is ramping up a new voice phishing campaign, with several potential victims already identified.
The Hacker News

Five Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack Accounts

Five fake Chrome extensions impersonate Workday and NetSuite to steal cookies, block admin controls, and hijack sessions for ...
i-SCOOP

Clawdbot, the always on AI assistent

Discover Clawdbot, the free open-source AI assistant that runs 24/7 on your own hardware. Learn what it is, who built it, ...

Synametrics Technologies Inc. Releases Xeams 10.0 (Build 6413).

The new version enables secure email sending for legacy devices and applications without OAuth. MILLSTONE, NJ, UNITED ...

US cargo tech company publicly exposed its shipping systems and customer data to the web

Shipping tech company Bluspark left internal plaintext passwords, including those of executives, exposed to the internet, at ...

New Facebook Warning For 3 Billion Users After Password Attacks

That warning concerns what is known as a browser-in-the-browser attack and, according to the Trellix security boffins, is an ...

Google's Universal Commerce Protocol Signals The End Of Search-Based Shopping

Google's Universal Commerce Protocol isn't just an API, it's infrastructure for AI-native shopping. Learn why major retailers ...

GitLab patches major security flaw - here's what we know

A new patch fixes six important GitLab flaws ...

Instagram denies data breach of 17 million users after password reset email wave — here's what to do next

Instagram denied a data breach after mass password reset emails were sent by an external party over the weekend, with the company fixing the issue while maintaining accounts remain secure.