The Hacker News

New VVS Stealer Malware Targets Discord Accounts via Obfuscated Python Code

VVS Stealer is a Python-based malware sold on Telegram that steals Discord tokens, browser data, and credentials using heavy ...

Fake error popups are spreading malware fast

Cybercriminals use ErrTraffic tool to automate malware distribution through fake browser error messages, with attacks ...

Microsoft Updates Windows To Stop You Using Chrome—Here’s The Problem

Microsoft has started 2026 with a surprise for users. Chrome downloads are being hit by the Windows maker’s latest update.
SecurityWeek

Critical Vulnerability Patched in jsPDF

A jsPDF vulnerability tracked as CVE-2025-68428 could allow attackers to read arbitrary files, exposing configurations and ...

Finally - a terminal solution to the browser wars

Old-time web users will fondly remember Lynx, a text-only browser that ran from the terminal. Now, there's a Sixel-compatible ...
CSO Online

Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not ...

Daily Search Forum Recap: January 2, 2026

Here is a recap of what happened in the search forums today, through the eyes of the Search Engine Roundtable and other search forums on the web. Some new publishers are seeing big swings since the ...