<?xml version="1.0" encoding="UTF-8"?>
<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9" xmlns:news="http://www.google.com/schemas/sitemap-news/0.9">
  <url>
    <loc>https://hackyjs.com/posts/from-peoplesoft-vulnerability-to-nissan-breach-a-hands-on-exploit-reconstruction-and-code-fix</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-06T00:00:00.000Z</news:publication_date>
      <news:title>From PeopleSoft Vulnerability to Nissan Breach: A Hands-On Exploit Reconstruction and Code Fix</news:title>
      <news:keywords>cybersecurity, oracle-peoplesoft, nissan, vulnerability, incident-response</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/gitea-docker-cve-2026-20896-hardening-your-deployment-while-attackers-probe</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-06T00:00:00.000Z</news:publication_date>
      <news:title>Gitea Docker CVE-2026-20896: Hardening Your Deployment While Attackers Probe</news:title>
      <news:keywords>gitea, docker, cve-2026-20896, container-security, vulnerability</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/how-a-malicious-website-can-exfiltrate-opera-gx-user-data-without-clicks-technical-breakdown-and-defenses</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-06T00:00:00.000Z</news:publication_date>
      <news:title>How a Malicious Website Can Exfiltrate Opera GX User Data Without Clicks: Technical Breakdown and Defenses</news:title>
      <news:keywords>cybersecurity, opera-gx, zero-click, vulnerability</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/inside-the-microsoft-edge-rce-bug-what-the-exploit-chain-reveals-about-browser-trust-boundaries</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-06T00:00:00.000Z</news:publication_date>
      <news:title>Inside the Microsoft Edge RCE Bug: What the Exploit Chain Reveals About Browser Trust Boundaries</news:title>
      <news:keywords>cybersecurity, microsoft-edge, rce, browser-security, vulnerability</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/path-traversal-and-xss-in-ibm-websphere-practical-defenses-for-java-developers</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-06T00:00:00.000Z</news:publication_date>
      <news:title>Path Traversal and XSS in IBM WebSphere: Practical Defenses for Java Developers</news:title>
      <news:keywords>ibm-websphere, xss, path-traversal, java-security</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/reverse-engineering-trojpix-em-exfiltration-from-air-gapped-pcs-at-208-meters</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-06T00:00:00.000Z</news:publication_date>
      <news:title>Reverse Engineering TrojPix: EM Exfiltration from Air-Gapped PCs at 208 Meters</news:title>
      <news:keywords>cybersecurity, air-gapped-systems, malware, em-side-channel, data-exfiltration</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/shrinking-the-vulnerability-window-lessons-from-apples-ai-driven-patching-pipeline</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-06T00:00:00.000Z</news:publication_date>
      <news:title>Shrinking the Vulnerability Window: Lessons from Apple’s AI-Driven Patching Pipeline</news:title>
      <news:keywords>cybersecurity, apple, ai-security, patch-management</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/auditing-android-apps-for-seven-year-api-and-crypto-deprecation-risks</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-05T00:00:00.000Z</news:publication_date>
      <news:title>Auditing Android Apps for Seven-Year API and Crypto Deprecation Risks</news:title>
      <news:keywords>android, security, cryptography, api-deprecation</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/auditing-openclaws-skill-marketplace-for-supply-chain-risks-in-agentic-ai</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-05T00:00:00.000Z</news:publication_date>
      <news:title>Auditing OpenClaw’s Skill Marketplace for Supply Chain Risks in Agentic AI</news:title>
      <news:keywords>agentic-ai, supply-chain-security, ai-security, marketplace-risk</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/defending-javascript-apps-from-fully-autonomous-ai-attackers-the-hard-parts</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-05T00:00:00.000Z</news:publication_date>
      <news:title>Defending JavaScript Apps from Fully Autonomous AI Attackers: The Hard Parts</news:title>
      <news:keywords>javascript, cybersecurity, ai-security, application-security</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/how-to-test-application-resilience-against-autonomous-ai-ransomware-with-lessons-from-a-real-attack</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-05T00:00:00.000Z</news:publication_date>
      <news:title>How to Test Application Resilience Against Autonomous AI Ransomware, With Lessons from a Real Attack</news:title>
      <news:keywords>cybersecurity, ai-security, ransomware, application-resilience, incident-response</news:keywords>
    </news:news>
  </url>
</urlset>
