The Joplin Globe

LEO Pharma Announces New Long-Term Data for SPEVIGO® (spesolimab-sbzo) Injection in Adults with Generalized Pustular Psoriasis at AAD 2026

LEO Pharma A/S, a global leader in medical dermatology, today announced new long-term results from EFFISAYIL ® ON, an ongoing five-year open-label extension study of the pivotal ...
The Hacker News

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

Florida lawmakers approve bill allowing retailers to round cash transactions

A Florida bill affecting how certain cash transactions are handled has cleared the legislature with overwhelming support. It ...

ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware Delivery

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be the first documented case of attackers abusing the Deno JavaScript runtime ...
Security Boulevard

When Proxies Become Attack Vectors Through Header Injection

Many modern web applications rely on the flawed assumption that backends can blindly trust security-critical headers from upstream reverse proxies. This assumption breaks down because HTTP RFC ...
Cyber Wire

Caught in the funnel.

Dave Bittner is a security podcast host and one of the founders at CyberWire. He's a creator, producer, videographer, actor, experimenter, and entrepreneur. He's had a long career in the worlds of ...
Healthline

Mounjaro Injection Sites: Which One is Right For You?

Mounjaro (tirzepatide) is prescribed to manage blood sugar levels in people with type 2 diabetes. It’s available as a single-dose prefilled pen. You will administer your Mounjaro injections into your ...
GitHub

Security: JavaScript Injection Vulnerability in Investigation Results Chart

A potential JavaScript injection vulnerability exists in the Health Analytics tab of the OPD Visit page. Investigation names are interpolated directly into JavaScript string literals without proper ...
Dark Reading

Cursor Issue Paves Way for Credential-Stealing Attacks

An inherent insecurity in the increasingly popular artificial intelligence (AI)-powered developer environment Cursor allows attackers to take over its browser to deliver credential-stealing attacks.