The Hacker News

Researchers Expose Phishing Threats Distributing CountLoader and PureRAT

A new campaign has been observed impersonating Ukrainian government agencies in phishing attacks to deliver CountLoader, which is then used to drop Amatera Stealer and PureMiner. "The phishing emails ...
GitHub

cors-anywhere vulnerable to server-side request forgery

This score calculates overall vulnerability severity from 0 to 10 and is based on the Common Vulnerability Scoring System (CVSS). Attack Vector: This metric reflects the context by which vulnerability ...
GitHub

Clipboard API access fails in Blazor Server (client-side interop) on macOS Safari

Clipboard copy functionality using client-side JavaScript interop (navigator.clipboard.writeText) fails to work in Safari on macOS when triggered from Blazor Server. However, native HTML onclick copy ...
Tabletmonkeys

Roblox Error Code Fix Guide | 8 Common Errors & Solutions

Millions of gamers visit Roblox every day, making it a huge platform. Until something goes wrong, it's a place to create, play, and spend time with friends. When you ...
The Hacker News

Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials

Cloud security company Wiz has revealed that it uncovered in-the-wild exploitation of a security flaw in a Linux utility called Pandoc as part of attacks designed to infiltrate Amazon Web Services ...
Bleeping Computer

CISA says hackers breached federal agency using GeoServer exploit

CISA has revealed that attackers breached the network of an unnamed U.S. federal civilian executive branch (FCEB) agency last year after compromising an unpatched GeoServer instance. While the ...
TheServerSide

Host your own Bluesky Personal Data Server (PDS) tutorial

Personal Data Servers are the persistent data stores of the Bluesky network. It houses a user's data, stores credentials, and if a user is kicked off the Bluesky network the Personal Data Server admin ...