A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers with cryptocurrency-related tasks.

February 2026 TIOBE Index shows Python still far ahead, C strengthening in second, C# rising, and R holding the top 10 as rankings compress.

Threat actors began targeting a recently patched BeyondTrust vulnerability shortly after a proof-of-concept (PoC) exploit was released.

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.

Microsoft patches 58 vulnerabilities, including six actively exploited zero-days across Windows, Office, and RDP, as CISA sets a March 3 deadline.

From prompt injection to deepfake fraud, security researchers say several flaws have no known fix. Here's what to know about them.

Imagine starting your day with a quick, digestible summary of the most important tech conversations happening on Hacker News.

Darktrace researchers say hackers used AI and LLMs to create malware to exploit the React2Shell vulnerability to mine ...

Microsoft warns that Python-based infostealers are increasingly targeting macOS, harvesting sensitive data and challenging ...

Intel said Tuesday that Google’s cloud security team helped the chipmaker identify five vulnerabilities in the most advanced confidential computing feature of its Xeon CPUs.

Java developers are simultaneously abandoning Oracle’s distribution to cut costs while expanding their use of the language to ...

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.