The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
The Hacker News

New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing

FROST uses JavaScript and OPFS SSD timing to identify websites at 88.95% F1, exposing cross-browser privacy leaks.
fintechnews

Fingerprint Launches AI Assistant Detection Preview for Real-Time Traffic ID

Fingerprint has released the preview version of its AI Assistant Detection and Automation Intelligence API, delivering an AI traffic identification layer designed to detect automated systems in real ...
Tech Critter

MSI delivers new AM5 motherboards, liquid coolers, GPU redesign, and more at COMPUTEX 2026

MSI has unveiled its latest PC component lineup at Computex 2026, showcasing high-performance AM5 motherboards with AMD EXPO ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
The Financial Express

‘CBSE portal very easy to exploit’: Class 12 hacker says he ‘didn’t expect amateur vulnerabilities’ | Exclusive

Just before appearing for his own Class 12 board exams, teenager and cybersecurity hobbyist Nisarga Adhikary claims he uncovered major vulnerabilities in a portal linked to CBSE’s digital evaluation ...