The Hacker News

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...
GovInfoSecurity

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

'Hundreds of thousands of stolen secrets could potentially be circulating as a result of these recent attacks': Google says North Korean hackers behind major attack on Axi…

It is exactly this backdoor that had Google conclude this was a North Korea-sponsored campaign. GTIG said WAVESHAPER.V2 is an ...

Overland Park insurance broker gets delisting warning from NYSE

Preview this article 1 min The insurance sales agency received the notice on March 19. Company officials say they have strong liquidity and plan to maintain their listing. SelectQuote's stock plummets ...
AARP

Actor Lisa Kudrow, 62, on the Best Part of Getting Older

Kudrow is closing out The Comeback, the HBO series she cocreated, cowrote and starred in across three seasons and lasted more ...

How Cloudflare’s Dynamic Workers Make Serverless Sandboxes 100X Faster

Discover the architecture behind Cloudflare's Dynamic Workers. Learn how they eliminate cold starts and make serverless sandboxes 100x faster for developers.

Malware on npm: HTTP client axios loads backdoor for Windows, macOS, and Linux

The maintainer account for the axios package on npm was compromised to inject a remote access trojan for Windows, macOS, and ...

PolyShell attacks target 56% of all vulnerable Magento stores

Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are ...
CSO Online

Chained vulnerabilities in Cisco Catalyst switches could induce denial-of-service

Cisco’s widely deployed Catalyst 9300 Series enterprise switches have four security vulnerabilities, two of which could be ...
The Register-Herald

Grizzlies' Ja Morant shut down for the season due to elbow injury

The Memphis Grizzlies ruled out Ja Morant for the season because of a UCL sprain in his left elbow. The Grizzlies said ...