Microsoft Just Patched a Major Security Vulnerability for This Popular Windows App

AI-related changes to Notepad allowed attackers to execute arbitrary code on your computer. The vulnerability was related to ...
The Hacker News

SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer

SmartLoader campaign spreading StealC via a trojanized Oura MCP server using fake GitHub forks to steal credentials and crypto funds.
The Hacker News

Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates

Keenadu firmware backdoor infects Android tablets via signed OTA updates, enabling remote control, ad fraud, and data theft ...

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

What 5 Million Apps Revealed About Secrets in JavaScript

Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder's research team built a new secrets detection method and scanned 5 ...
PCMag

This Preinstalled Android Malware Can Hack Any App You Launch on a Device

Be wary of cheap Android devices. Antivirus provider Kaspersky discovers a new backdoor called 'Keenadu,' which has been ...