Attack on GitHub.dev steals OAuth token for all repos

The web version of the VS Code editor on GitHub.dev had a security vulnerability that allowed attackers to take over all of a ...

Hegseth attacks Europe over migration with beach 'invasion' D-Day speech

The US defence secretary was speaking in Normandy, 82 years after allied forces launched their operation to liberate ...
The Hacker News

Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content

Weedhack malware targets Minecraft players via YouTube and SEO poisoning since Jan 2026, enabling credential theft and remote ...
Bleeping Computer

New IronWorm malware hits 36 packages in npm supply-chain attack

A new supply-chain attack has infected 36 packages on the Node Package Manager (npm) index with infostealer malware called IronWorm. The malware targets 86 environment variables (key-value pairs) and ...

Hackers hijack thousands of sites for ClickFix and FakeUpdate attacks

A threat actor tracked as DriveSurge has been operating large-scale malware distribution campaigns using ClickFix and ...
The Hacker News

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

Multiple npm supply chain attacks used 50+ poisoned packages to spread IronWorm, a Rust-based stealer, and a Miasma worm ...

Ukraine launches new drone attack on St. Petersburg

A Ukrainian drone strike set ablaze an oil terminal in the city and hit a nearby naval base Wednesday, hours before the ...

Israel says it struck Iran after taking missile fire as Tehran vows ‘painful response’ for attack on Beirut

Israel struck Beirut without warning on Sunday morning, an action Iran warned would renew full-scale war across the Mideast ...

Red Hat hit by npm supply‑chain attack - here's how to stay safe

Days after IBM and Red Hat announced a master security plan for open-source software, Red Hat suffers a major breach of its ...
Dark Reading

DriveSurge Hijacks Thousands of Sites for ClickFix, FakeUpdate Attacks

A sneaky IAB operation uses a malicious traffic distribution system (TDS) to redirect visitors of trusted websites to ones ...
The Register-Herald

Suspect in Taylor Swift Vienna concert attack plot convicted and sentenced to 15 years

An Austrian court has convicted a man of planning to attack a Taylor Swift concert in Vienna nearly two years ago. He was ...
The Caledonian-Record

NH Moose Are Under Tick Attack; Could Forestry Changes Help Save Them?

In fall, hoards of winter ticks latch on to New Hampshire’s moose — sometimes upward of 50,000 per adult animal.