The Hacker News

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe ...
The Caledonian-Record

Eczema Injectable Drug Provides Quick Itch Relief, Clinical Trial Results Show

The U.S. Food and Drug Administration (FDA) approved nemolizumab in 2024 for treatment of moderate-to-severe atopic ...

Local medical device startup licenses epinephrine injector that fits in a smartphone

How a physician's frustration sparked an invention licensed by a Boston-area medical device startup that could transform how patients carry life-saving medication.

Google Updates JavaScript SEO Docs With Canonical Advice

Google updated its JavaScript SEO docs with new guidance on canonical URLs for JavaScript-rendered pages. Keep canonicals ...
The Hacker News

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads

GhostPoster malware hid inside 17 Firefox add-ons, abusing logo files to hijack links, inject tracking code, and run ad fraud ...

GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions counting more ...
FinanceFeeds

Hackers Exploit JavaScript Library to Deploy Crypto Wallet Drainers

Hackers exploit a critical React JavaScript vulnerability, CVE-2025-55182, to deploy crypto wallet drainers on legitimate websites ...