Freier Editor Notepad++ 8.9.1: Wartungs-Update setzt Fokus auf Stabilität

Entwickler Don Ho hat mit Notepad++ 8.9.1 ein Update veröffentlicht, das den freien Editor von mehreren Fehlern befreit und ...
Bleeping Computer

GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions with more than 50,000 downloads, to monitor browser activity and plant a backdoor. The ...
The Hacker News

Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads

Cybersecurity researchers are calling attention to a new campaign that's leveraging GitHub-hosted Python repositories to distribute a previously undocumented JavaScript-based Remote Access Trojan (RAT ...
TechRadar

Popular JavaScript library can be hacked to allow attackers into user accounts

Node-forge cryptography library flaw (CVE-2025-12816) allowed bypass of signature and certificate validation CERT-CC warns of risks including authentication bypass and signed data tampering ...
GIGAZINE

Finally, to fully utilize the YouTube download function of yt-dlp, a JavaScript runtime such as Deno is required, and the installation procedure is like this

YouTube's specifications are extremely complex and change frequently. The yt-dlp development team previously supported YouTube using a method that heavily relied on regular expressions. However, in ...
TechRadar

An incredibly popular JavaScript library might have some worrying malware issues

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. A widely-adopted JavaScript library has been found carrying a critical vulnerability which could ...
Bleeping Computer

Popular JavaScript library expr-eval vulnerable to RCE flaw

A critical vulnerability in the popular expr-eval JavaScript library, with over 800,000 weekly downloads on NPM, can be exploited to execute code remotely through maliciously crafted input. The ...
theregister

Capita fined £14M after 58-hour delay exposed 6.6M records

The UK's Information Commissioner's Office (ICO) has issued a £14 million ($18.6 million) penalty to outsourcing giant Capita following a catastrophic 2023 cyberattack that exposed the personal data ...
The Escapist

PlayStation Plus im Oktober: Alan Wake 2 führt die Downloads an

Remedy schickt Alan Wake wieder in die Albtraumkulisse. Nur fällt diesmal die Kaufpreisbarriere für Plus-Mitglieder. Das Timing sitzt: Es ist Halloween, also Headsets auf und Licht aus. Alan Wake 2 ...
TechSpot

Breach of npm threatens billions of weekly downloads in JavaScript ecosystem

What the Script: Supply chain attacks are traditionally designed to inflict maximum damage on structured organizations or companies. However, when such an attack compromises a supply chain that an ...