The Hacker News

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads

GhostPoster malware hid inside 17 Firefox add-ons, abusing logo files to hijack links, inject tracking code, and run ad fraud ...
GitHub

Security: JavaScript Injection Vulnerability in Investigation Results Chart

A potential JavaScript injection vulnerability exists in the Health Analytics tab of the OPD Visit page. Investigation names are interpolated directly into JavaScript string literals without proper ...
The Hacker News

Researcher Uncovers 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments (IDEs) that combine prompt injection primitives with legitimate ...