AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
NFL

2026 NFL free agency frenzy: Smartest/riskiest signings and trades in opening wave of moves

The free agency frenzy has been a whirlwind. As the dust settles on an eventful opening stanza, Matt Okada identifies the smartest and riskiest signings and trades. What's the verdict on the Dolphins' ...
The Hacker News

Investigating a New Click-Fix Variant

New ClickFix variant maps WebDAV drive to run trojanized WorkFlowy app, enabling stealth C2 beacon and payload delivery.