The Hacker News

GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection

GootLoader malware is abusing malformed ZIP archives that bypass common tools like WinRAR & deliver JavaScript payloads via ...

Trinidad Chambliss files lawsuit against NCAA over eligibility

Ole Miss QB Trinidad Chambliss filed a lawsuit against the NCAA in a Mississippi state court on Friday as he seeks an extra ...
SecurityWeek

Critical Vulnerability Patched in jsPDF

A jsPDF vulnerability tracked as CVE-2025-68428 could allow attackers to read arbitrary files, exposing configurations and ...

Malicious GhostPoster browser extensions found with 840,000 installs

Another set of 17 malicious extensions linked to the GhostPoster campaign has been discovered in Chrome, Firefox, and Edge ...

SharkTime Software announces wList 3.0; File searching and file listing redefined

wList – enhanced Windows file search and directory listing tool. wList offers faster searches, smart file categorization, and ...

Eligible Amazon customers can now file claims in $2.5B FTC settlement

Amazon customers who are eligible for payment in its settlement with the Federal Trade Commission can now file claims.

Critical jsPDF flaw lets hackers steal secrets via generated PDFs

The jsPDF library for generating PDF documents in JavaScript applications is vulnerable to a critical vulnerability that ...

PageProof launches FinalFile.com, a free tool to add and verify Content Credentials for creative files

FinalFile.com lets creatives and enterprises add or verify Content Credentials in seconds – ensuring trust in every ...

Malware scam: Job offers trick developers with malicious repositories

Developers now need to be careful with job offers. Criminals are trying to distribute infostealers through them.
The Hacker News

PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense Forces

CERT-UA reports PLUGGYAPE malware attacks targeting Ukrainian defense forces via Signal and WhatsApp, using phishing links ...
How-To Geek on MSN

Why I use Qubes: 3 security reasons a normal Linux distro can’t match

If you're unaware, web browsers are horribly insecure. They're like a ship with a thousand holes and a thousand sailors with ...
InfoQ

Vercel Open-Sources Bash Tool for Context Retrieval Using Local Filesystems

Vercel has open-sourced bash-tool that provides a Bash execution engine for AI agents, enabling them to run filesystem-based ...