The Hacker News

Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers

Cloudflare patched an ACME HTTP-01 validation flaw that disabled WAF protections and let unauthorized requests reach origin ...

Beware - over 840,000 malicious browser extensions uncovered

Security researchers LayerX have discovered 17 extensions for Chrome, Firefox, and Edge browsers which monitored people’s ...

Malicious GhostPoster browser extensions found with 840,000 installs

Another set of 17 malicious extensions linked to the GhostPoster campaign has been discovered in Chrome, Firefox, and Edge ...

Hackers exploit Modular DS WordPress plugin flaw for admin access

Hackers are actively exploiting a maximum severity flaw in the Modular DS WordPress plugin that allows them to bypass ...
fox61

Access Health CT extends enrollment deadline to Jan. 31 amid state aid for lost subsidies

HARTFORD, Conn. — Access Health CT has extended its deadline to enroll in insurance coverage through Jan. 31, citing changes at the state and federal level. James Michel, CEO of Access Health CT, says ...
The Hacker News

Trust Wallet Chrome Extension Hack Drains $8.5M via Shai-Hulud Supply Chain Attack

Trust Wallet on Tuesday revealed that the second iteration of the Shai-Hulud (aka Sha1-Hulud) supply chain outbreak in November 2025 was likely responsible for the hack of its Google Chrome extension, ...
Windows Report

Microsoft Quietly Kills the Chrome Web Store Extension Control in Edge

The long-standing toggle that controlled Chrome Web Store extensions is now gone from Edge’s stable release, with no announcement from Microsoft. Since its Chromium launch, Microsoft Edge has ...