The Hacker News

âš¡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

Phishing surge, LinkedIn tracking claims, spyware use, and rising stealers expose growing abuse of trusted systems.

Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...

LinkedIn secretly scans for 6,000+ Chrome extensions, collects data

A new report dubbed "BrowserGate" warns that Microsoft's LinkedIn is using hidden JavaScript scripts on its website to scan ...

Your LinkedIn session might not be as private as you think

A new report claims LinkedIn scans over 6,000 Chrome extensions and collects device data using hidden scripts, raising major privacy concerns.

Google Issues Zero-Day Attack Alert For 3.5 Billion Chrome Users

Google has issued an update alert for 3.5 billion Chrome browser users following confirmation of a new zero-day attack ...
The Next Web

LinkedIn is secretly scanning your browser for 6,000 extensions, and you weren’t told

LinkedIn runs a hidden JavaScript script called Spectroscopy that silently probes over 6,000 Chrome extensions and collects ...

A popular coding tool was hijacked to deliver malware.

A hacker took over an account belonging to the lead maintainer of the JavaScript library, Axios, which is used to handle HTTP requests, as reported by Cybernews. Security researchers found that ...
MUO on MSN

I stopped using Event Viewer to check failed logins after discovering this PowerShell trick

No need to guess, the evidence is already there.
Tom's Hardware on MSN

LinkedIn is spying on you, according to a new 'BrowserGate' security report

LinkedIn reportedly injects a JavaScript fingerprinting script to probe visitors' browsers for 6,236 installed Chrome ...