The Hacker News

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

According to Cisco Talos, it's these URL-exposed webhooks – which make use of the same *.app.n8n [.]cloud subdomain – that ...
SCL

Avoiding Privacy & Data Protection Breaches when Emailing Multiple Recipients

Dr W Kuan Hon and Dr Eoin Woods highlight the ongoing data protection issues caused by not using BCC and suggest some ...
The Hacker News

108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 Users

According to Socket, the extensions (complete list here) are published under five distinct publisher identities – Yana ...
CSO Online

Hackers have been exploiting an unpatched Adobe Reader vulnerability for months

Now a security researcher says a Reader hole has been quietly exploited by malware for as long as four months, fingerprinting ...

AI Expansion, Security Crises, and Workforce Upheaval Define This Week in Tech

AI breakthroughs, zero-day exploits, and layoffs reveal how this week’s tech news pivots on fast-moving artificial ...

The Axios Hack: How a single compromised account put millions of developers at risk

What makes this attack so unsettling is that all the hackers had to do was just steal the password of one of the axios ...
The Guardian Nigeria

Best Email Marketing Tools for Nonprofits 2026

Compare Brevo, Moosend, GetResponse & AWeber for nonprofit fundraising. Nigerian pricing, donation integration & honest pros/cons. Pay-per-email vs subscriber pricing analysed.

How I vibe-coded a web tool in three days with no programming experience

AI chatbots make it possible for people who can’t code to build apps, sites and tools. But it’s decidedly problematic.
Security Boulevard

Credit Resources Vault: Why this credit email set off our scam alarms

Inside a targeted email campaign that funnels the most vulnerable financial people into handing over sensitive data, and ...
SecurityWeek

Critical Flowise Vulnerability in Attacker Crosshairs

Threat actors have started exploiting CVE-2025-59528, a critical Flowise vulnerability leading to remote code execution.
GovInfoSecurity

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software packages, to distribute a cross-platform, ...