Popular JavaScript library can be hacked allowing access to user accounts

A popular JavaScript cryptography library is vulnerable in a way which could allow threat actors to break into user accounts. The library has since been updated, and users are urged to move to the new ...

Microsoft to secure Entra ID sign-ins from script injection attacks

Starting in mid-to-late October 2026, Microsoft will enhance the security of the Entra ID authentication system against ...
The Hacker News

⚡ Weekly Recap: Fortinet Exploited, China's AI Hacks, PhaaS Empire Falls & More

Fortinet CVE exploited, China-linked AI attacks exposed, PhaaS platform dismantled, and fake crypto apps deploy RATs. Catch this week’s top threats.
Indiatimes

Microsoft apologises to 2.7 million customers: Company admits to billing error in Microsoft 365 plans, offers refund; check eligibility and how to claim

Microsoft is offering refunds to eligible US subscribers of its Microsoft 365 service following allegations of misleading pricing for AI-enhanced plans. This move comes after Australian regulators ...