New Android malware uses AI to click on hidden browser ads

A new family of Android click-fraud trojans leverages TensorFlow machine learning models to automatically detect and interact ...
The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.

Malicious GhostPoster browser extensions found with 840,000 installs

Another set of 17 malicious extensions linked to the GhostPoster campaign has been discovered in Chrome, Firefox, and Edge ...
The Hacker News

Trust Wallet Chrome Extension Hack Drains $8.5M via Shai-Hulud Supply Chain Attack

Trust Wallet on Tuesday revealed that the second iteration of the Shai-Hulud (aka Sha1-Hulud) supply chain outbreak in November 2025 was likely responsible for the hack of its Google Chrome extension, ...
Polygon

Rainbow Six Siege hackers pull a Robin Hood, give players billions in in-game currency

Imagine booting up your favorite game and seeing an impossible number of credits under your account. We're talking "you could buy the entire storefront every day for years on end" type of money. Well, ...
Wired

The Worst Hacks of 2025

It was a strange year in cyberspace, as US president Donald Trump and his administration launched foreign policy initiatives and massive changes to the federal government that have had significant ...
Mashable

Ubisoft takes 'Rainbow Six Siege' offline after significant hack

Ubisoft shut down the servers for Tom Clancy's Rainbow Six Siege X for more than 24 hours after suffering a massive systems breach over the weekend. Hackers reportedly gained access to the ...