The silent “Storm”: New infostealer hijacks sessions, decrypts server-side

New "Storm" infostealer skips local decryption, sending browser data to attacker servers. Varonis shows how server-side decryption enables session hijacking, bypassing passwords and MFA.
InfoQ

Safari Adds scrollend Event Support, Completing Baseline Browser Coverage

Safari's release of version 26.2 in December introduced support for the scrollend event, completing its alignment with major browsers. This event signals when scrolling has definitively ended, ...