The operator, known as Tom, said only users who signed a fake terms-of-service message on the compromised site after the breach were affected.

A dozen hours later in my Dark Souls 2 run, I defeated The Duke's Dear Freja, a giant spider boss possessed by a petrified ...

Unauthenticated password reset vulnerability in widely deployed enterprise switching hardware carries a near-maximum severity score.

Poke tests dangerous admin commands that quickly spiral out of control.

Hackers exploited a compromised npm package to breach cloud systems and gain full AWS administrator access within 72 hours.

UNC6426 used stolen GitHub tokens from the 2025 nx npm breach to gain AWS admin access in under 72 hours, enabling data theft and cloud destruction.

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems.

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.