The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...
The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
InfoWorld

Protocol Buffers schemas expose remote code execution risk

Researchers at Cyera found six vulnerabilities in prtobuf.js, including a flaw that can turn attacker-controlled schema data ...
InfoWorld

GitHub finally pulls the plug on automatic install script execution for npm

The change, expected in July, will likely block one of the more common attack vectors; developers are wondering what took ...
PCMag

Sorry, No Pornhub Access in 24 States and 3 Countries. How to Watch Anyway

Aylo sites like Pornhub are blocked across the US, most recently in West Virginia, and overseas, in protest of ...
Computerworld

Industry

EU's cloud sovereignty push leaves room for US hyperscalers The Cloud and AI Development Act signals a regulatory direction for the EU as it aims to reduce dependency on US cloud providers. But Europe ...
Dark Reading

Application Security

Explore the latest news and expert commentary on Application Security, brought to you by the editors of Dark Reading ...
GitHub

krishnamk00/Top-10-OpenSource-News-Weekly

2022-09-30 Cloudflare previews workerd, an open source JavaScript/Wasm runtime for ‘nanoservices’ Here's OpenStack Platform 17 – aka what Red Hat hopes your network operator will one day use BellSoft ...