The Hacker News

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

Suspected Russian actor deploys CANFAIL malware via phishing, targeting Ukrainian defense, energy, and aid sectors using LLM-assisted lures.
GitHub

Secure File Upload and Download Application

In today's digital age, the secure exchange of files over the internet has become increasingly important. The ability to upload and download files securely is crucial for users and organizations alike ...

Modern PDF platforms are becoming high-risk attack surfaces

Modern PDF platforms can now function as full attack gateways rather than passive document viewers.
SecurityWeek

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

Vulnerabilities in PDF platforms from Foxit and Apryse could have been exploited for account takeover, data exfiltration, and ...

Google Chrome Gets Built-In Split View and PDF Annotations

Google has added three new features to the Chrome desktop browser, including split view for multitasking, PDF annotations, ...
Onrec

How to Convert PSD Layers Into Individual PDF Pages?

One minute you’re perfecting drop shadows, the next minute your client is blowing up your phone asking for a “simple PDF ...
The Hacker News

ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories

ThreatsDay Bulletin tracks active exploits, phishing waves, AI risks, major flaws, and cybercrime crackdowns shaping this week’s threat landscape.

Edge just got a useful AI tool that Chrome doesn't have - here's how to try it

Edge just got a useful AI tool that Chrome doesn't have - here's how to try it ...
MIT Technology Review

The Download: the rise of luxury car theft, and fighting antimicrobial resistance

Antimicrobial resistance is a major problem. Infections caused by bacteria, fungi, and viruses that have evolved ways to ...
Opinion
MIT Technology ReviewOpinion

The Download: autonomous narco submarines, and virtue signaling chatbots

The news: Google DeepMind is calling for the moral behavior of large language models—such as what they do when called on to act as companions, therapists, medical advisors, and so on—to be scrutinized ...

What 5 Million Apps Revealed About Secrets in JavaScript

Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder's research team built a new secrets detection method and scanned 5 ...

Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...