DataBreachToday

Breach Roundup: Recently Patched Oracle Flaw Under Attack

This week, a recently fixed Oracle flaw is being actively exploited, Shelly tackled Pro 4PM DoS bug, "Shai-Hulud 2.0" hit npm ...

Popular JavaScript library can be hacked to allow attackers into user accounts

A popular JavaScript cryptography library is vulnerable in a way which could allow threat actors to break into user accounts.
The Hacker News

Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update

Microsoft has announced plans to improve the security of Entra ID authentication by blocking unauthorized script injection ...