Google publishes exploit code threatening millions of Chromium users

Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens millions of people using Chrome, Microsoft Edge, and virtually all other ...
Microsoft

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft

Hulud payload to steal CI/CD secrets from Linux-based automation environments. The malware executes during npm install and ...
SecurityWeek

Anthropic Silently Patches Claude Code Sandbox Bypass

A cybersecurity researcher says Anthropic has silently patched a vulnerability that would have allowed an attacker to bypass the Claude Code network sandbox, potentially enabling data exfiltration.
CSO Online

Contractor’s public GitHub account exposed GovCloud and CISA credentials

This kind of exposure happens with alarming frequency,’ said an expert; here’s what CSOs and CIOs should do to protect ...

SandboxAQ brings its drug discovery models to Claude — no PhD in computing required

Other venture-backed companies like Chai Discovery and Isomorphic Labs have raced to build better models. SandboxAQ is ...

Best Coding Bootcamps With Job Guarantees Of 2026

The table below highlights the best online coding bootcamps with job guarantees and the key strength, upfront cost and ...

AI agents show they can create exploits, not just find vulns

Sure, AI agents such as Mythos can find security vulnerabilities in software, but the bigger question is whether they can ...
CSO Online

Meet Fragnesia, the third Linux kernel vulnerability in a month

Linux admins reeling from handling last month’s CopyFail and last week’s Dirty Frag kernel vulnerabilities have a new ...
Analytics Insight

7 Trusted Data Collection Services for Enterprise Businesses in 2026

Your data pipeline isn't just a back-end function. It's the intelligence layer that decides whether your business acts before competitors do or catches up after the fact. Finding a trusted full ...
The Hacker News

⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More

Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and ...
cryptopolitan

Brazilian trojan hijacks WhatsApp to spread crypto phishing

TCLBANKER is a Brazilian banking trojan that monitors 59 banking and crypto domains. The malware spreads by hijacking victims’ WhatsApp Web sessions and Outlook accounts to send phishing messages to ...