AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

LeakNet ransomware uses ClickFix and Deno runtime for stealthy attacks

The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a ...

ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware ...

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be ...

Google rushes Chrome update fixing two zero-days already under attack

Skia graphics lib and V8 JavaScript engine brings browser's tally of actively exploited bugs to three in 2026 Google has ...
CSO Online

Google warns of two actively exploited Chrome zero days

One allows a remote attacker to execute arbitrary code inside a sandbox, the other could result in loss of sensitive ...
Cybernews

Who owns your Chrome extension? Researchers warn side projects are being turned into malware

Many Chrome extensions start as small developer projects, and once they gain users, are sold on. But what if the new owner ...
InfoWorld

First look: Electrobun for TypeScript-powered desktop apps

Powered by the TypesScript-native runtime Bun, Electrobun improves Electron with a smaller application footprint and built-in ...
Việt Báo

3.5 billion Google Chrome users receive urgent warning.

Google has just released an emergency Chrome update to patch two dangerous zero-day vulnerabilities being exploited by ...

Why AI is both a curse and a blessing to open-source software - according to developers

Why AI is both a curse and a blessing to open-source software - according to developers ...
PCQuest

Chrome zero-day emergency: billions of users told to update now

Google warns of two actively exploited Chrome zero-days. Learn what the flaws do, why they matter, and the one update step ...
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

Chrome Users Beware! Indian Govt Warn Users Of A High-Risk Alert: Steps On How To Stay Safe

India’s Computer Emergency Response Team (CERT-In) has issued a high-risk alert to Google Chrome users, warning that outdated ...