Red Hat hit by npm supply‑chain attack - here's how to stay safe

Days after IBM and Red Hat announced a master security plan for open-source software, Red Hat suffers a major breach of its ...

Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard

Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard ...

Hackers hijack thousands of sites for ClickFix and FakeUpdate attacks

A threat actor tracked as DriveSurge has been operating large-scale malware distribution campaigns using ClickFix and ...
Tech Times

Fake Claude Code Installers on 32 Live Sites Steal Developer API Keys via Google Ads

Fake Claude Code installer malware used Google Ads to place spoofed AI tool pages above real documentation since March 2026.

WP Maps Pro bug exploited to create admin accounts on WordPress sites

Hackers are targeting WordPress websites running a vulnerable version of the WP Maps Pro plugin, which allows creating rogue ...
Dark Reading

With Complex Cloud Integrations, Small Errors Lead to Major Compromises

Cybersecurity researchers create a five-step exploit chain using over-permissioned roles, secrets discovery, and NHIs to attack a popular low-code service.

What to know about Bill C-22, Canada’s proposed lawful-access legislation

The bill has drawn much criticism from tech companies and civil-liberties groups that warn it could compromise cybersecurity ...
Android Central on MSN

Apple's rumored iPhone 18 anti-theft feature is already on Android, and you should enable it ASAP

Apple is rumored to be copying Google's powerful anti-theft protection for the iPhone 18 and iOS 27, and Android users can ...
PCMag on MSN

Wikipedia Editors Could Strike Following Layoffs

In one proposed version of the strike, Wikipedia's volunteer editors would make edits only in instances of 'egregiously ...