Techlomedia

jsPDF Vulnerability Exposes Developers to Serious PDF Object Injection Risk

A newly disclosed security issue in the popular jsPDF library has raised serious concerns for web developers. The flaw could ...

New HIV drug may end multi-pill regimen for older people

People who have lived with HIV long-term can need up to a dozen pills every day to suppress the virus. Results from a new ...

Massachusetts board votes to eliminate GLP-1 obesity coverage amid budget crisis

State health plan overseers voted Thursday to eliminate coverage for GLP-1 drugs for obesity, capping off months of torn ...

Automation tool n8n: Updates patch code injection flaws

In the automation tool n8n, eleven security vulnerabilities have been discovered. Three of these are considered critical ...
SecurityWeek

GitHub Issues Abused in Copilot Attack Leading to Repository Takeover

Orca has discovered a supply chain attack that abuses GitHub Issue to take over Copilot when launching a Codespace from that ...

Firefox 148 adds AI kill switch, fixes 50+ security flaws

PCWorld highlights that Mozilla’s Firefox 148 update addresses over 50 security vulnerabilities, including high-risk memory ...
The Hacker News

ClickFix Campaign Abuses Compromised Sites to Deploy MIMICRAT Malware

ClickFix Campaign Abuses Compromised Sites to Deploy MIMICRAT Malware | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software ...
InfoWorld

Three web security blind spots in mobile DevSecOps pipelines

Mobile platforms operate under fundamentally different trust assumptions than we relied on for web security. Your mobile ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
The Caledonian-Record

ViiV Healthcare presents pipeline data for two investigational HIV treatment therapies with ...

ViiV Healthcare, the global specialist HIV company majority owned by GSK, with Pfizer and Shionogi as shareholders, * today announced data from its phase 1 study of long-acting formulations of VH184, ...
Security Boulevard

Early 2026 is Proving KasadaIQ’s AI Predictions

AI agents have moved from experimental to operational. Now security teams must verify agent identity, intent, and trust before automation becomes exploitation.