The Hacker News

HOOK Android Trojan Adds Ransomware Overlays, Expands to 107 Remote Commands

Cybersecurity researchers have discovered a new variant of an Android banking trojan called HOOK that features ransomware-style overlay screens to display extortion messages. "A prominent ...
GitHub

gjovanovicst/golang-auth-api

cmd/api/main.go # Entry point internal/ # Core logic ├── auth/ # Authentication handlers ├── user/ # User management ├── social/ # Social authentication (OAuth2) ├── twofa/ # Two-Factor Authentication ...
Mobile ID News

Motive and Telefónica Demo SMS-Free Phone Authentication Using GSMA Open Gateway API

Motive and Telefónica have demonstrated a successful proof of concept (PoC) for phone number verification using the GSMA Open Gateway’s Number Verification API. The demonstration, showcased at the ...
The Hacker News

Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication

A set of five critical security shortcomings have been disclosed in the Ingress NGINX Controller for Kubernetes that could result in unauthenticated remote code execution, putting over 6,500 clusters ...
GitHub

Slim Todo List API

Slim Todo List API is a simple RESTful API that allows users to manage their to-do list. It supports pagination, sorting and filtering by status. This API uses JWT for authentication. This project is ...
Wired

Exposed DeepSeek Database Revealed Chat Prompts and Internal Data

The Chinese generative artificial intelligence platform DeepSeek has had a meteoric rise this week, stoking rivalries and generating market pressure for United States–based AI companies, which in turn ...
SecurityWeek

Researcher Discloses 36 Vulnerabilities Found in IBM Security Verify Access

Security researcher Pierre Barre has drawn attention to three dozen vulnerabilities in IBM Security Verify Access (ISVA), including ones that could have allowed attackers to compromise the entire ...