Popular JavaScript library can be hacked allowing access to user accounts

Node-forge cryptography library flaw (CVE-2025-12816) allowed bypass of signature and certificate validation CERT-CC warns of ...
Pen Test Partners

Android Activities 101

TL;DR Introduction Android splits its communications into multiple components, some of which we’ve written about before. One ...
The Hacker News

Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update

Microsoft has announced plans to improve the security of Entra ID authentication by blocking unauthorized script injection ...

French soccer federation hit by cyber-attack, member data stolen

The French soccer federation says a cyber-attack has led to the theft of member data. It says the software used by clubs for managing registered members was targeted.

The silent checkout threat: Card details stolen before you press ‘Submit’

Attackers implant JavaScript skimmers that run silently in your browser, capturing full card numbers, CVVs, names, email ...