24B Records Exposed in Massive Leak of Emails, Passwords, and Login Data

Cybernews researchers found an exposed database with 24 billion credential records, raising fresh risks from password reuse ...
The Hacker News

⚡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and More

This week’s cybersecurity recap covers Firefox and Chrome bugs, EDR-killer tools, a TV botnet, an OpenBSD flaw, Android ...
World Wildlife Fund (WWF)

How scientists use DNA to protect sea turtles

ShellBank uses DNA to trace sea turtle origins, reveal global connections, and help scientists protect endangered populations ...

Source: Elastic agrees to buy CRV-backed DeductiveAI for up to $85M

DeductiveAI, a startup that uses AI to catch and resolve bugs in software, was founded just three years ago.
InfoQ

Ky 2.0 Fetch API Wrapper with Revamped Hooks, Smarter Timeouts, and Built-In Schema Validation

Ky 2.0 is an open-source JavaScript HTTP client built on the Fetch API, featuring significant updates such as consolidated ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
The Next Web

A single click on a Microsoft link could have drained your inbox. Here’s how SearchLeak worked.

Varonis chained three bugs in Microsoft 365 Copilot Enterprise Search into a one-click data theft path that bypassed phishing filters and CSP protections.
Bleeping Computer

Microsoft links Mastra AI supply chain attack to North Korean hackers

Microsoft has attributed a recent Mastra AI supply chain attack that compromised more than 140 npm packages to the North Korean hacking group Sapphire Sleet, also known as BlueNoroff. This attribution ...
Tech Times

npm Supply Chain Attack: North Korea Backdoored 144 AI Packages in 88 Minutes

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
CNET

The Clock is Ticking for Samsung Messages: Move Everything Over Before the Shutdown

Omar Gallaga has covered technology, digital culture and other topics for outlets including CNET, NPR, WIRED, Texas Monthly, MSNBC, Consumer Reports, The Washington Post, the Los Angeles Times, The ...
Gadget Review on MSN

24 billion plaintext passwords exposed: What it means for you

24 billion plaintext passwords sit exposed in a leaked database - here's why reused passwords put your accounts at serious ...