The Hacker News

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

APT28 exploited CVE-2026-21513, an MSHTML zero-day (CVSS 8.8), using malicious LNK files to bypass security controls and execute code.

Phish of the day: Microsoft OAuth scams abuse redirects for malware delivery

Crims hope for payday from malicious payloads rather than stealing access tokens Microsoft has warned organizations about ...
Goldseiten

ONGold Advances Geological and Structural Understanding of the Monument Bay Gold & Tungsten Deposit

ONGold Resources Ltd. is pleased to provide an update on the key outcomes of the Monument Bay gold and tungsten project geological and structural review undertaken as part of the historical core ...

Six Bethlehem businesses win town microenterprise grants

Last week, the town of Bethlehem announced awards totaling $140,000 through its microenterprise grant program. The awards, which range from $10,000 to $35,000, will assist six Bethlehem small ...
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in pages to attacker‑controlled infrastructure.