The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
GitHub

mmc_lolbas_execution_process_spawn.yml

description: The following analytic identifies `mmc.exe` spawning a LOLBAS execution process. It leverages data from Endpoint Detection and Response (EDR) agents, focusing on process creation events ...
GitHub

Capture screenshots of websites from the command-line

Note to Linux users: If you get a "No usable sandbox!" error, you need to enable system sandboxing. Note to Apple silicon users: If you get a "spawn Unknown system error" error, try installing Rosetta ...
Microsoft

Threat actors misuse Node.js to deliver malware and other malicious payloads

Since October 2024, Microsoft Defender Experts (DEX) has observed and helped multiple customers address campaigns leveraging Node.js to deliver malware and other payloads that ultimately lead to ...
Hosted on MSN

Minecraft Releases Big New Bedrock Update for February 2025

Mojang Studios released update 1.21.60 for Minecraft Bedrock, adding unique pig variants, wildflowers, and more. The update includes Lodestone changes, quality-of-life features, and bug fixes to make ...