The Hacker News

Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows

Critical n8n v CVE-2026-25049 allows authenticated workflow abuse to execute system commands and expose server data.
The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Experts details PeckBirdy, a JavaScript C2 framework used since 2023 by China-aligned attackers to spread malware via fake ...

Everton 1-1 Leeds - send us your thoughts

Have your say ...
SecurityWeek

Open VSX Publisher Account Hijacked in Fresh GlassWorm Attack

A compromised Open VSX publisher account was used to distribute malicious extensions in a new GlassWorm supply chain attack.
IFA Magazine

Warning: self-assessment taxpayers overpaid £8.9bn in income tax last year

Self-assessment taxpayers overpaid an estimated £8.9bn last year*, research from national accountancy group UHY Hacker Young shows.
IFA Magazine

HMRC charged taxpayers £325m in fines and interest for late self-assessment tax payments last year

HM Revenue and Customs (HMRC) issued £325 million in fines and interest charges to taxpayers who paid their self-assessment ...

If You've Installed Any of These 17 Browser Extensions, Delete Them Now

Another wave of malicious browser extensions capable of tracking user activity have been found across Chrome, Firefox, and ...
Infosecurity Magazine

Over 80% of Ethical Hackers Now Use AI

The vast majority (82%) of ethical hackers now use AI in their workflows, enabling companies to benefit from faster findings, more assessments, broader security coverage and higher quality reporting, ...

Canadian man charged in 2021 GOP hacking case says he’s in jail for allegedly breaching bail

Aubrey Cottle faces charges in Canada and the U.S. related to cyberattack linked to hacktivist group Anonymous ...
Visual Studio Magazine

VS Code Team Member Blames User Trust Decisions in Repo-Based Attacks

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...
Security Boulevard

Exploring Identity Management and CardSpace Technology

A deep dive into the evolution of identity management and cardspace technology. Learn how modern enterprise sso and ciam ...
Security Boulevard

NSFOCUS Monthly APT Insights – December 2025

Regional APT Threat Situation In December 2025, the global threat hunting system of Fuying Lab detected a total of 24 APT attack activities. These activities were primarily concentrated in regions ...