SecurityWeek

Critical Vulnerability Patched in jsPDF

A jsPDF vulnerability tracked as CVE-2025-68428 could allow attackers to read arbitrary files, exposing configurations and ...

Critical jsPDF flaw lets hackers steal secrets via generated PDFs

The jsPDF library for generating PDF documents in JavaScript applications is vulnerable to a critical vulnerability that ...

Malware scam: Job offers trick developers with malicious repositories

Developers now need to be careful with job offers. Criminals are trying to distribute infostealers through them.
Ecommerce Fastlane

Shopify Product Page Speed Audit in 5 Steps

Baseline checklist (15 minutes): Pick one product page that represents your typical template (not a weird one-off). Write ...
BankInfoSecurity

DeadLock Ransomware Group Utilizes Polygon Smart Contracts

The DeadLock ransomware group, a newly emerged digital extortion group, is using blockchain smart contracts to store proxy ...
CyberGuy

Browser extension malware infected 8.8M users in DarkSpectre attack

DarkSpectre malware hid inside browser extensions for years. Learn how 8.8M users were exposed and how to protect yourself ...
Cyber Daily

Update NOW! Singaporean government and cyber security firm warn of perfect 10 SmarterTools vulnerability

A vulnerability in SmarterTools’ SmarterMail platform could lead to remote code execution on vulnerable mail servers.
CyberGuy

Fake error popups are spreading malware fast

Fake error popups now trick people into running malware themselves. A new tool makes these attacks faster and harder to ...
Newsd

Firefox 147 Launches With Faster Performance and New Features

Mozilla has released the final build of Firefox 147 before its official launch date. The full release will happen on ...
CSO Online

Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not ...