The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...
SecurityWeek

Bitwarden NPM Package Hit in Supply Chain Attack

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

AI Upgrades, Security Breaches, and Industry Shifts Define This Week in Tech

AI model launches, zero-day fixes, privacy scares, robot rollouts, and billion-dollar deals — catch up on the biggest ...
InfoWorld

27 questions to ask before choosing an LLM

From cost and performance specs to advanced capabilities and quirks, answers to these questions will help you determine the ...
GovInfoSecurity

Breach Roundup: Mr. Raccoon Wants Your Password

This week, a "Raccoon"-linked actor hit help desks, Eurail exposed 308K users, Fortinet patched critical flaws, Pushpaganda ...

I found the easiest way to encrypt files on an Android phone - and it's free to do

I found the easiest way to encrypt files on an Android phone - and it's free to do ...

OpenAI Confirms Security Incident—Mac Users Must Update All Apps Now

All macOS users must update their OpenAI apps, including ChatGPT, to the latest versions following a security incident, ...
GovInfoSecurity

Vercel Traces Customer Data Theft to Agentic AI Tool Breach

Cloud platform provider Vercel said an attacker breached its systems and stole customer data after compromising a third-party ...
The Hacker News

⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More

Stay ahead of the logs with our Monday Recap. We break down active Adobe 0-days, North Korean crypto stings, and critical CVEs you need to patch today ...

Nginx 1.30 changes default proxy behavior

ECH encrypts the TLS handshake, backends speak HTTP/2, and Multipath TCP uses multiple network paths in parallel.