Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into executing malicious JavaScript in their browser, allowing attackers to ...

ClawJacked attack let malicious websites hijack OpenClaw to steal data

Security researchers have disclosed a high-severity vulnerability dubbed "ClawJacked" in the popular AI agent OpenClaw that allowed a malicious website to silently bruteforce access to a locally ...
WSB-TV

Georgia Senate approves requirement to identify foreign-import shrimp on restaurant menus

ATLANTA — An effort to require restaurants to label menus when fish and shrimp is imported from outside the U.S. netted new support in the Georgia Senate. House Bill 117, proposed during the 2025 ...
Columbus Dispatch

Les Wexner's name redacted in some Epstein files, congressmen say

Ohio billionaire Les Wexner's name was initially redacted in some recently released Jeffrey Epstein files. The Department of Justice un-redacted Wexner's name, stating it already appears thousands of ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
PC Magazine

Read for Less: Here's How to Find Free Ebooks and Add Them to Your Kindle

Read for Less: Here's How to Find Free Ebooks and Add Them to Your Kindle If your budget can't keep up with your reading habit, there are plenty of free options online. Here's how to send multiple ...