The Hacker News

ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services

ClickFix uses fake CAPTCHAs and a signed Microsoft App-V script to deploy Amatera stealer on enterprise Windows systems.

Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
The Hacker News

Hackers Exploit c-ares DLL Side-Loading to Bypass Security and Deploy Malware

Active malware exploits DLL side-loading in a signed GitKraken binary to deliver trojans, stealers, and remote access malware ...
Business Times

mm2 Asia unit receives payment demand for S$18.9 million from creditor

[SINGAPORE] A unit of embattled entertainment group mm2 Asia on Monday (Dec 29) said it has received a payment demand for S$18.9 million, even as the parent company secured protection from creditors ...
CoinTelegraph

Flow advances recovery plan, raises exchange concerns after $3.9M exploit

The plan to address a multimillion-dollar exploit continued with "phase two progress" on EVM after it scrapped a plan to roll back the blockchain. The Flow Foundation is continuing to implement a ...
Bleeping Computer

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers. First documented by Fortinet in July ...
SCOTUSblog

Express Scripts v. California

11/14/2025 Motion to extend the time to file a response from December 1, 2025 to January 15, 2026, submitted to The Clerk. 11/14/2025 Response of Express Scripts, Inc., et al. to motion submitted.