Bleeping Computer

Critical jsPDF flaw lets hackers steal secrets via generated PDFs

The jsPDF library for generating PDF documents in JavaScript applications is vulnerable to a critical vulnerability that allows an attacker to steal sensitive data from the local filesystem by ...
The Hacker News

Why Secrets in JavaScript Bundles are Still Being Missed

Scanning 5M apps uncovered 42K exposed secrets in JavaScript bundles, revealing major gaps in traditional SAST, DAST, and ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

Moltbook had an exposed database with over 20,000 emails, 1.5 million API keys and more

Moltbook, the viral platform for AI bots, reportedly built and moderated by AI bots, had a huge security flaw that exposed sensitive information, according to security researchers.
Dark Reading

'Contagious Interview' Attack Now Delivers Backdoor Via VS Code

Once trust is granted to the repository's author, a malicious app executes arbitrary commands on the victim's system with no ...
Lifehacker

Amazon Prime Members Can Get Two Free E-Books in January

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication. Credit: Illustration by Zain Awais and product image courtesy of Amazon.