FrostyNeighbor, a long-running cyberespionage actor apparently aligned with the interests of Belarus, has been active recently in campaigns targeting governmental organizations in Ukraine. This latest ...

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...

CVE-2026-41940 exploitation by 2,000 IPs enabled Filemanager backdoor attacks, causing credential theft and persistent access ...

JavaScriptやReact周辺の開発で広く使われているライブラリ群「TanStack」のnpmパッケージに、攻撃者がマルウェア入りのバージョンを公開するサプライチェーン攻撃が行われました。TanStack公式の事後報告によると、攻撃者は2026 ...

Several SAP npm packages were exposed to a supply chain attack. The hacker group TeamPCP is behind it, say security ...

Mini Shai-Hulud worm compromises 169 npm packages including TanStack Mistral AI; TeamPCP uses stolen OIDC tokens.

「Google Chromeがユーザーに明確な確認を取らないまま約4GBのオンデバイスAIモデルをPCにダウンロードしている」とプライバシー監査の専門家であるアレクサンダー・ハンフ氏が指摘しています。

Microsoft admits it didn't expect Win32 to survive until 2026. After years of RAM-heavy web apps, Windows 11 is going back to ...

A fake repo impersonating the OpenAI Privacy Filter model racked up 244,000 downloads in under 18 hours before Hugging Face ...

Nitro Software, a trusted global provider of PDF, eSign, and AI-powered document automation solutions, today announced early access to Nitro MCP, a Model Context Protocol (MCP) connector that brings ...

Obsidian is good on its own, but these plugins made it even better for me.

FEATURE: Ubuntu doesn't just mean GNOME – or Wayland. Alongside the default edition of Ubuntu 26.04 last week, editions with ...