News

Cybercriminals are stealing business Salesforce data with this simple trick - don't fall for it
The goal is to steal large amounts of confidential data in an attempt to extort the victims. Here's how it works.
The Hacker News13h
Popular Chrome Extensions Leak API Keys, User Data via HTTP and Hardcoded Credentials
Several popular Chrome extensions send sensitive user data over unencrypted HTTP, exposing millions to interception and ...
SecurityWeek17h
ClickFix Attack Exploits Fake Cloudflare Turnstile to Deliver Malware
Researchers have discovered and analyzed a ClickFix attack that uses a fake Cloudflare ‘humanness’ check. The Cloudflare ...
Hacker selling critical Roundcube webmail exploit as tech info disclosed
Hackers are actively exploiting CVE-2025-49113, a critical vulnerability in the widely used Roundcube open-source webmail ...
Fake DocuSign and Gitcode sites are tricking victims into downloading malware - here's what you need to know
Threat actors are creating fake DocuSign and Gitcode websites The sites come with fake CAPTCHA and other scam mechanisms ...
SecurityWeek15h
Backdoored Open Source Malware Repositories Target Novice Cybercriminals
A threat actor has been creating backdoored open source malware repositories to target novice cybercriminals and game cheaters.