Flying home for the holidays? How JFK, LaGuardia airports could be putting your sensitive info at risk

Airport security apparently doesn’t apply online at New York City airports. John F. Kennedy International (JFK), Newark (EWR) ...

Malicious extensions in Chrome Web store steal user credentials

Two Chrome extensions in the Web Store named 'Phantom Shuttle' are posing as plugins for a proxy service to hijack user ...
The Hacker News

GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads

GhostPoster malware hid inside 17 Firefox add-ons, abusing logo files to hijack links, inject tracking code, and run ad fraud ...
SecurityWeek

GhostPoster Firefox Extensions Hide Malware in Icons

Tens of thousands of users have installed GhostPoster Firefox extensions, which rely on steganography to hide malware in ...
The Hacker News

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass only when webserver AUTHTYPE was ...

PayPal Subscription Scam Sends Fake Purchase Emails

Cybercriminals have found a way to misuse PayPal’s subscription billing system to send compelling scam emails that appear to ...

Criminal IP Reveals Global React2Shell RCE Exposure Across React Server Components

React2Shell (CVE-2025-55182) is a critical vulnerability affecting the most widely used React-based services across the web ecosystem. With low exploitation complexity and publicly available PoCs, ...

GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions counting more ...

Woman faces charges related to animal cruelty

A Chesapeake woman faces charges related to animal cruelty after police say an apparent surgical procedure was performed on a ...