Update wird ausgerollt: Zwei Schwachstellen gefähr­den Chrome-Anwender

Mit einem aktuell verteilten Update behebt Google zwei gefährliche Schwachstellen in seinem Browser Chrome, die bereits ausgenutzt werden.
chip

Top 100 Online-Utilities Downloads aller Zeiten

Browser Tauschbörsen Kommunikation Download-Tools E-Mail-Software Cloud, Sync & File-Transfer eBay-Tools Online-Utilities Gebührenwächter Web-Dienste Twitter, RSS & Podcasts Streaming & Online-Medien ...
MIT Technology Review

The Download: AI’s role in the Iran war, and an escalating legal fight

Much of the spotlight on AI in the Iran conflict has focused on models like Claude helping the US military decide where to strike. But a wave of “vibe-coded” intelligence dashboards—and the ecosystem ...

Sicherheitsanalyse mit KI: Anthropics Opus 4.6 findet 22 Sicherheitslücken in Firefox

Wenn es bei den KI-Agenten um Sicherheit geht, dreht sich die öffentliche Debatte bislang in erster Linie um die Schwachstellen der KI-Systeme. KI-Anbieter wollen diese aber seit geraumer Zeit als Sic ...
VentureBeat

Browser-based attacks hit 95% of enterprises — and traditional security tools never saw them coming

Your web gateway can't see it. Your cloud access broker can't see it. Your endpoint protection can't see it. And yet 95% of organizations experienced browser-based ...
Bleeping Computer

GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions with more than 50,000 downloads, to monitor browser activity and plant a backdoor. The ...
TechRadar

Popular JavaScript library can be hacked to allow attackers into user accounts

Node-forge cryptography library flaw (CVE-2025-12816) allowed bypass of signature and certificate validation CERT-CC warns of risks including authentication bypass and signed data tampering ...
GIGAZINE

Finally, to fully utilize the YouTube download function of yt-dlp, a JavaScript runtime such as Deno is required, and the installation procedure is like this

YouTube's specifications are extremely complex and change frequently. The yt-dlp development team previously supported YouTube using a method that heavily relied on regular expressions. However, in ...
Bleeping Computer

Popular JavaScript library expr-eval vulnerable to RCE flaw

A critical vulnerability in the popular expr-eval JavaScript library, with over 800,000 weekly downloads on NPM, can be exploited to execute code remotely through maliciously crafted input. The ...
TechSpot

Breach of npm threatens billions of weekly downloads in JavaScript ecosystem

What the Script: Supply chain attacks are traditionally designed to inflict maximum damage on structured organizations or companies. However, when such an attack compromises a supply chain that an ...