The Hacker News

âš¡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More

Stay ahead of the logs with our Monday Recap. We break down active Adobe 0-days, North Korean crypto stings, and critical CVEs you need to patch today ...
CSO Online

Seven IBM WebSphere Liberty flaws can be chained into full takeover

A pre‑authentication bug in SAML Web SSO, combined with weak access controls and cryptography, allows attackers to escalate privileges and achieve remote code execution.

Dhruv Patel: Advancing Cybersecurity And Distributed Intelligence In The Digital Age

Dhruv Patel's work demonstrates how advanced expertise in distributed systems, AI, and cybersecurity can influence digital ...
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...
InfoQ

Devnexus 2026: Focus on AI with Core Java, Java Frameworks, Security and Career Mentoring

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
The Hacker News

Trojanized Gaming Tools Spread Java-Based RAT via Browser and Chat Platforms

Threat actors are luring unsuspecting users into running trojanized gaming utilities that are distributed via browsers and chat platforms to distribute a remote access trojan (RAT). "A malicious ...
Homeland Security Today

Java Productions Wins 5 Year U.S. Coast Guard Program Support Services Task on Oasis

U.S. Coast Guard Chief Warrant Officer DeAnna Melleby, Information Systems Security Officer for the Coast Guard Command, Control, Communication and Information Technology unit at Coast Guard Base ...
adtmag.com

Bellsoft Survey Finds Java Teams Struggle to Square Container Debugging Tools with Security Goals

Incidents are common, and the remediation window is the risk: 23% reported a container security incident, and delays between disclosure and patching can leave known exposures in production. Java ...
InfoQ

Java News Roundup: Oracle Critical Patch Update, Grizzly 5, Payara Platform, GraalVM, Liberica JDK

This week's Java roundup for January 19th, 2026, features news highlighting: JEP 527, Post-Quantum Hybrid Key Exchange for TLS 1.3, targeted for JDK 27; GlassFish Grizzly 5.0; the quarterly release of ...
Bleeping Computer

New malware service guarantees phishing extensions on Chrome web store

A new malware-as-a-service (MaaS) called 'Stanley' promises malicious Chrome extensions that can clear Google's review process and publish them to the Chrome Web Store. Researchers at end-to-end data ...
Bleeping Computer

Malicious extensions in Chrome Web store steal user credentials

Two Chrome extensions in the Web Store named 'Phantom Shuttle' are posing as plugins for a proxy service to hijack user traffic and steal sensitive data. Both extensions are still present in Chrome's ...