Threats
North Korean hackers weaponise VS Code tasks.json to steal credentials from developers
Open a project folder in VS Code, click "Trust," and North Korean malware executes instantly. Sophos documents how NICKEL ALLEY weaponised tasks.json to target crypto …
Artem Safonov
•
Latest
All News →
Editors' Choice
Privacy
The digital footprint myth: why you cannot delete everything, and what works in 2026
Adam Bream
January 10, 2026
Tools
Best Linux Distros for Ethical Hacking in 2026: Which One Should You Choose?
Adam Bream
March 4, 2026
Privacy
Deep web and Tor in 2026: how the hidden internet actually works
Adam Bream
March 10, 2026
Threats
One-Click IP Leak: Telegram Proxy Links Expose Real IP Addresses Before Activation
Artem Safonov
January 13, 2026
Popular
Threats
One-Click IP Leak: Telegram Proxy Links Expose Real IP Addresses Before Activation
Think your IP is safe? Think again. Researchers have proven that a harmless-looking proxy link in Telegram instantly exposes your real IP address to an …
Artem Safonov
•
Threats
Trivy scanner breached, 75 GitHub Actions tags poisoned, npm worm spawned in 24-day attack
A 24-day supply chain campaign hit Aqua Security's Trivy scanner, 75 GitHub Actions tags, and 66+ npm packages. TeamPCP stole CI/CD secrets from 10,000+ workflows …
Artem Safonov
•
Deep web and Tor in 2026: how the hidden internet actually works
Adam Bream
March 10, 2026
DarkSword iOS exploit chain hits four countries with six flaws and three zero-days
Artem Safonov
March 19, 2026
Best Linux Distros for Ethical Hacking in 2026: Which One Should You Choose?
Adam Bream
March 4, 2026
March 23, 2026 vulnerability digest: Oracle emergency patch, Windchill CVSS 10 zero-day
Artem Safonov
March 23, 2026
RuView turns Wi-Fi signals into through-wall body tracking for $54 in hardware
Artem Safonov
March 10, 2026
Threats
March 26, 2026
North Korean hackers weaponise VS Code tasks.json to steal credentials from developers
March 25, 2026
March 25, 2026 vulnerability digest: Apple sandbox escapes, Cisco IOS XE bundle
March 25, 2026
NetScaler memory overread CVE-2026-3055 mirrors CitrixBleed, exploitation imminent
March 25, 2026
TeamPCP backdoors LiteLLM on PyPI using stolen Trivy credentials, 97M downloads exposed
March 25, 2026
Chrome 146 update patches eight high-severity flaws in WebGPU, WebGL, Fonts, and FedCM
Incidents
March 23, 2026
Crunchyroll breached through Telus Digital outsourcer, 100 GB of data reportedly stolen
March 20, 2026
Contractor extorted Siemens subsidiary Brightly Software for $2.5 million in crypto
March 17, 2026
Companies House flaw exposed five million UK firms' private data for five months
March 11, 2026
Spain's Ministry of Finance employee data leaked with IDs, IBANs, and contact details
March 9, 2026
Velvet Tempest deploys CastleRAT via ClickFix in Termite ransomware staging
AI news
March 15, 2026
CVE-2026-26144: Excel XSS turns Copilot Agent into zero-click exfiltration tool
Crypto
March 20, 2026
Wife allegedly used home CCTV to steal $172 million in Bitcoin from husband's Trezor
Cybercrime
March 24, 2026
Russian hacker gets 7 years, ransomware negotiator charged for attacking own clients
March 23, 2026
FBI seizes four Handala Hack domains, MOIS-linked group launches replacement within hours
March 20, 2026
Super Micro co-founder charged with smuggling $2.5 billion in Nvidia AI servers to China
March 15, 2026
Operation Lightning dismantles SocksEscort botnet that hijacked 369,000 devices worldwide
March 14, 2026
FBI investigates seven Steam games laced with malware that drained crypto wallets
Tech
March 25, 2026
