GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions counting more ...
The Hacker News

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads

GhostPoster malware hid inside 17 Firefox add-ons, abusing logo files to hijack links, inject tracking code, and run ad fraud ...
InfoWorld

8 old programming languages developers won’t quit

Newer languages might soak up all the glory, but these die-hard languages have their place. Here are eight languages ...

North Korean hackers exploit React2Shell flaw in EtherRAT malware attacks

A new malware implant called EtherRAT, deployed in a recent React2Shell attack, runs five separate Linux persistence ...
Dark Reading

React2Shell Exploits Flood the Internet as Attacks Continue

As exploitation activity against CVE-2025-55182, researchers are finding some exploits contain bypasses for Web application firewall (WAF) rules.
Infosecurity Magazine

New BeaverTail Malware Variant Linked to Lazarus Group

A new variant of the BeaverTail malware linked to North Korean hackers has been identified targeting cryptocurrency traders ...
The Hacker News

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

North Korea-linked attackers exploit CVE-2025-55182 to deploy EtherRAT, a smart-contract-based RAT with multi-stage ...
Pen Test Partners

Eurostar AI vulnerability: when a chatbot goes off the rails

TL;DR Introduction I first encountered the chatbot as a normal Eurostar customer while planning a trip. When it opened, it ...

Americans with autism are being forced to hide their true selves again. But I refuse to pretend

After years of growing understanding and care about the lives of people with autism, America is backsliding dangerously under ...
Cybernews

Code that works can also be malware: this WhatsApp API is stealing messages

A malicious npm WhatsApp library with 56,000 downloads secretly stole messages, credentials, and contacts in a sophisticated ...
Yahoo Finance

Encoded Therapeutics to Present Interim Phase 1/2 Clinical Data on ETX101, the First One-time Gene Therapy in Development for Dravet Syndrome, at the 2025 American Epilepsy ...

– Oral and poster presentations to include seizure and neurodevelopmental data from POLARIS Phase 1/2 Program that support advancement of ETX101 – SOUTH SAN FRANCISCO, Calif., December 01, ...
GitHub

24f2006816/llm-prompt-attack-simulator

A Flask-based endpoint with a Playwright-powered headless browser solver for automated quiz task execution. The system accepts quiz URLs via POST requests, renders JavaScript-heavy pages, extracts ...