CSOonline

WhatsApp API worked exactly as promised, and stole everything

Malicious npm package posing as a WhatsApp Web API library operated for months as a functional dependency while stealing messages and maintaining persistence. Security researchers have uncovered a ...
Zee Business

Google activates Android emergency location service in India Uttar Pradesh GPS Wi-Fi mobile ...

Google on Tuesday activated its Emergency Location Service (ELS) on Android devices in India. Uttar Pradesh has become the first state in the country to fully integrate this advanced caller location ...
The Hacker News

ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories

Weekly cybersecurity roundup covering exploited vulnerabilities, malware campaigns, legal actions, and nation-state attacks ...

Malicious Chrome extensions caught stealing sensitive data

Chrome extensions called 'Phantom Shuttle' stole user data for years before Google removed them from the Chrome Web Store after researchers exposed the malicious tools.
Security Boulevard

Microsoft’s January Security Update of High-Risk Vulnerability Notice for Multiple Products

Overview On January 14, NSFOCUS CERT detected that Microsoft released the January Security Update patch, which fixed 112 security issues involving widely used products such as Windows, Microsoft ...