The Hacker News

Why Secrets in JavaScript Bundles are Still Being Missed

Scanning 5M apps uncovered 42K exposed secrets in JavaScript bundles, revealing major gaps in traditional SAST, DAST, and ...
CSO Online

AI-powered polymorphic attack lures victims to phishing webpages

A new breed of malware uses various dynamic techniques to avoid detection and create customized phishing webpages.

Browser-based attacks hit 95% of enterprises — and traditional security tools never saw them coming

Omdia research shows 95% of organizations faced browser-based attacks last year. CrowdStrike's CTO and Clearwater Analytics' ...
CSO Online

Flaws in Chainlit AI dev framework expose servers to compromise

Security researchers uncovered two vulnerabilities in the popular Python-based AI app building tool that could allow ...
TechRound

Cyber Criminals Are Using LLMs For Phishing Attacks, Here’s How

Unit 42, the threat intelligence team at Palo Alto Networks, published new research showing how criminals now use large ...
The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Experts details PeckBirdy, a JavaScript C2 framework used since 2023 by China-aligned attackers to spread malware via fake ...

Zerion Opens Enterprise Wallet Data API to All Developers

San Francisco, United States, January 22nd, 2026, ChainwireNew self-service API portal provides instant access to Ethereum ...

Hackers are using LLMs to build the next generation of phishing attacks

What if a phishing page was generated on the spot?
SecurityWeek

Cyber Insights 2026: API Security – Harder to Secure, Impossible to Ignore

Cybersecurity experts share insights on securing Application Programming Interfaces (APIs), essential to a connected tech world.

Datavault AI Inc. Completes Acquisition of API Media

Technology Provider API Media extends Datavault AI and the patented ADIO Technology to the Live Outdoor Event Market ...

Inside SearchGuard: How Google detects bots and what the SerpAPI lawsuit reveals

We fully decrypted SearchGuard, the anti-bot system protecting Google Search. Here's exactly how Google tells humans and bots ...
Enterprise Times

Yottaa launches MCP server purpose-built for eCommerce performance intelligence

Yottaa have announced the launch of its Model Context Protocol (MCP) server. Yotta says this makes it the first eCommerce-focused performance vendor to ...