In 1995, a Netscape employee wrote a hack in 10 days that now runs the Internet

“Bill Gates was bitching about us changing JS all the time,” Eich later recalled of the fall of 1996. Microsoft created its ...
The Hacker News

⚡ Weekly Recap: USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More

This week’s ThreatsDay Bulletin covers USB malware, fake crypto scams, CastleRAT, new cyber laws, and falling ransomware ...
The Hacker News

Experts Confirm JS#SMUGGLER Uses Compromised Sites to Deploy NetSupport RAT

Researchers detail JS#SMUGGLER, a multi-stage web attack using JavaScript, HTA, and PowerShell to deploy NetSupport RAT on ...

Admins and defenders gird themselves against maximum-severity server vuln

According to Wiz and fellow security firm Aikido, the vulnerability, tracked as CVE-2025-55182, resides in Flight, a protocol ...
Decrypt

How an AI Wiz Used ChatGPT to Turn the Tables on a Scammer

An IT worker claims he "vibe coded" a phishing page via AI to unmask a would-be scammer in Delhi, prompting panicked pleas ...
CNET

You've Heard About Smart Home Hacking: Here's How It Works and How Likely It Is

Smart home hacking exists, but it's probably not the threat you think it is. Here are the facts, practices to keep you safe and more.

React2Shell flaw exploited to breach 30 orgs, 77k IP addresses vulnerable

Over 77,000 Internet-exposed IP addresses are vulnerable to the critical React2Shell remote code execution flaw (CVE-2025-55182), with researchers now confirming that attackers have already ...
CSO Online

RCE flaw in OpenAI’s Codex CLI highlights new risks to dev environments

Researchers found that .env files inside cloned repositories could be used to change the Codex CLI home directory path and ...
Dark Reading

Student Sells Gov't, University Sites to Chinese Actors

It's the best deal going in cybercrime: fully compromised websites belonging to high-value organizations, for just a couple hundred bucks each.