The Hacker News

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.
The Caledonian-Record

Mender Announces Steward™ - A New Command Center for Enterprise IT Asset Lifecycle Management

Javascript is required for you to be able to read premium content. Please enable it in your browser settings. Copyright Business Wire 2026.
The Hacker News

Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content

Weedhack malware targets Minecraft players via YouTube and SEO poisoning since Jan 2026, enabling credential theft and remote ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.
The Caledonian-Record

Gulf allies targeted by Iran as strikes continue despite ceasefire

Despite the ongoing ceasefire between the U.S. and Iran, the two countries exchanged fire once again, with the Islamic Republic targeting regional neighbors.
BankInfoSecurity

XenoRAT Espionage Campaign Targets Afghan Finance Ministry

A suspected Pakistan-linked cyberespionage group targeted Afghanistan's Ministry of Finance in a spear-phishing campaign ...