SecurityWeek

North Korean Hackers Target macOS Developers via Malicious VS Code Projects

North Korean hackers target macOS developers with malware hidden in Visual Studio Code task configuration files.
The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized ...
Security Boulevard

Detecting browser extensions for bot detection, lessons from LinkedIn and Castle

Modern bot detection rarely deals with obviously fake browsers. Most large-scale automation today runs inside browser ...
The Hacker News

ThreatsDay Bulletin: AI Voice Cloning Exploit, Wi-Fi Kill Switch, PLC Vulns, and 14 More Stories

This week's stories show how fast attackers change their tricks, how small mistakes turn into big risks, and how the same old ...
Bleeping Computer

MongoDB warns admins to patch severe vulnerability immediately

Update 12/26/25: Article updated to correct that the flaw has not been officially classified as an RCE. MongoDB has warned IT admins to immediately patch a high-severity memory-read vulnerability that ...
ZDNet

Is iOS 26.2 worth the download? 5 reasons to update your iPhone today

iOS 26.2 offers security patches for two zero-day flaws. The update also enhances AirDrop, Reminders, and Podcasts. Be sure to also update your iPad, Mac, Apple Watch, and Apple TV. iPhone owners who ...