The Hacker News

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

Chrome CVE-2026-0628 let malicious extensions hijack Gemini panel for privilege escalation, local file access, and ...
The Hacker News

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

While the Windows maker did not attribute the activity to a specific threat actor, the use of VS Code tasks and Vercel ...

Deno 2.7 sharpens Node.js compatibility and stabilizes Temporal

Version 2.7 of the runtime for JavaScript and TypeScript stabilizes the Temporal API, introduces npm overrides, and ...

Pakistan imposes curfew after deadly Iran protests

Violent demonstrations have erupted in several Pakistani cities over the killing of Iran's Supreme Leader Khamenei. UN ...

Pakistan: Several killed in violent protest at US consulate

Several people have been killed at protests outside the US consulate in Karachi. US and Iranian institutions around the globe ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

WinUIpad: AI to the Rescue ⭐

With progress slowing to a crawl, I researched Windows App SDK alternatives and then started experimenting with AI pair programming.

This high-severity Chrome Gemini vulnerability lets malicious extensions spy on your PC

A bug in Google Chrome's Gemini AI feature could expose your data or allow attackers to monitor you. Here's how to stay protected.

ClawJacked attack let malicious websites hijack OpenClaw to steal data

Security researchers have disclosed a high-severity vulnerability dubbed "ClawJacked" in the popular AI agent OpenClaw that allowed a malicious website to silently bruteforce access to a locally ...

QuickLens Chrome extension steals crypto, shows ClickFix attack

A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was ...

WinBeta’s News Reader app updated to v2, now comes with a Live tile and push notifications!

The Windows Store currently showcases the first version of the app, but once you download it, you will have the first version of the app with an update available. Install that update to have v2. We ...

'It's eerie' - Dubai on edge as city comes under attack by Iran

On the Palm Jumeirah, Dubai's luxury man-made archipelago, the five-star Fairmont The Palm hotel was struck by a large explosion. Debris from an intercepted drone resulted in a "minor fire" on the ...