The Hacker News

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.

Microsoft opens door to the past by releasing 86-DOS and PC-DOS 1.00

Antiques code show Microsoft has released the source for another of its relics. This time, it's 86-DOS 1.00 getting the open ...
CSO Online

Critical GitHub RCE bug exposed millions of repositories

The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting ...
SecurityWeek

Checkmarx Confirms Data Stolen in Supply Chain Attack

Checkmarx has confirmed that hackers stole data from its GitHub environment one week after hacking it to publish malicious ...

Notepad++ Code Editor Comes to Mac After 20-Year Wait

The popular Notepad++ coding editor is now available as a native macOS app, following an unofficial open-source community ...

eScan Enterprise DLP Closes Critical GitHub Access Control Gap for Organizations

GitHub Team accounts leave enterprises exposed. eScan enforces corporate-only authentication across all GitHub tiers — ...

Warp Open-Sources Its Agentic Development Environment, Introducing a New Model for Building Software with Cloud Agents

Sponsored by OpenAI, Warp launches an open-source ADE where users can submit ideas and watch agents build and ship them ...

Checkmarx admits it was hit by major cyberattack that saw data leaked onto dark web

CheckMarx confirms March 2026 attack did result in data theft.

Microsoft finally open sources DOS 1.0 - and it's so much more than the code

Want a blast from the past? Microsoft just open-sourced its very first operating system, offering a rare insight into the ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...
The Hacker News

Checkmarx Confirms GitHub Repository Data Posted on Dark Web After March 23 Attack

Checkmarx data surfaced after March 23, 2026 supply chain attack, prompting repository lockdown and investigation, raising ...

Eradani DevOps Fills the Gap AI Coding Tools Leave Behind on IBM i

While AI assistants generate the code, most IBM i shops have no pipeline to get it to production safely AI tools are ...