npm Ecosystem Under Siege: New Rust Stealer and Worm Variant Emerge

A flaw in Anthropic's Claude Code GitHub Action allowed attackers to hijack public repos by opening a single issue, potentially compromising downstream projects.

A new campaign called HazyBeacon exploits AWS to stealthily target Southeast Asian government networks, evading traditional defenses.

An unpatched vulnerability in Windows Search URI handler allows attackers to steal NTLMv2 hashes, similar to a previous Snipping Tool flaw.

Google published exploit code for a Chromium vulnerability reported 42 months ago, now patched, but posing risks to millions of users.

CVE-2026-41089, a 0-click RCE in Windows Netlogon, is now actively exploited in the wild. Unpatched domain controllers are at high risk.

North Korean APT Kimsuky targets South Korean military and firms with new malware HTTPSpy, HelloDoor, and VS Code tunnels in recent attacks.

Palo Alto Networks confirms active exploitation of CVE-2026-0257, a medium-severity authentication bypass in PAN-OS and Prisma Access that allows unauthorized VPN setup.

IBM and Red Hat commit $5 billion and 20,000 engineers to Project Lightwell, an AI-driven initiative to overhaul open-source security at scale.

Google published exploit code for a Chromium vulnerability reported 42 months ago, now fixed, but millions of users were exposed.