The Hacker News

ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More

ThreatsDay roundup covering stealthy attacks, phishing trends, exploit chains, and rising security risks across the threat landscape.
GitHub

ASP.NET Core 10.0 - Minimal API Example.

If the dotnet tool not exist, you may need to install it first. Execute the command - dotnet user-jwts create --claim Username=user1 --claim Email=user1@example.com --name user1. This will generate a ...
The Hacker News

UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor

A previously undocumented threat activity cluster has been attributed to an ongoing malicious campaign targeting education and healthcare sectors in the U.S. since at least December 2025. The campaign ...
IEEE

CoordAuth: Hands-Free Two-Factor Authentication in Virtual Reality Leveraging Head-Eye Coordination

Abstract: We present CoordAuth, a gaze-based two-factor authentication technique in VR utilizing implicit head-eye motion features to offer a more secure and natural alternative to traditional pattern ...
IEEE

Anonymous Two-Party Authentication and Key Establishment With Trusted Server for Future-Proofing Security of Mobile Communication System

Abstract: In cellular systems, user devices (UEs) establish secure sessions with each other through a trusted server such as the Home Subscriber Server (HSS) or Authentication Center (AuC). The ...