Security Boulevard

The Chrome Extension Backdoor: How ‘Productivity Tools’ Became Enterprise Attack Vectors

Millions installed 'productivity' Chrome extensions that became malware after acquisition. Here's how browser extensions became enterprise security's weakest link.

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.
GitHub

Barrel file removal tool for JavaScript & TypeScript projects (ESM-only).

Barrel files are convenient, but they often come with trade-offs including: Performance and memory: they artificially inflate the module graph and slow down startup times, HMR, and CI pipelines.

2026 Browser Data Reveals Major Enterprise Security Blind Spots

The browser is becoming the operating system for modern work, yet many enterprises still treat it as an extension of network or endpoint security. Keep Aware's 2026 State of Browser Security Report ...

Chrome May Soon Open Your Webcam for Photo Uploads on Desktop

Chrome may add camera capture for file uploads on desktop. Websites can open your webcam instead of the system file picker.

Anyone can code now. What will you build?

This app isn’t about to become a billion-dollar company. It can remember your collection, but only if you return to it using the same computer or phone. Someone without technical skills may struggle ...
Security Boulevard

Latest OpenClaw Flaw Can Let Malicious Websites Hijack Local AI Agents

Oasis Security researchers find yet another security problem with the OpenClaw AI agent, with this one allowing malicious websites to silently take control of a developer's system and steal data.

LibreOffice Online dragged out of the attic, dusted off for another go

The Document Foundation (TDF) has pulled LibreOffice Online out of its "attic" – its term for retired projects – and is ...