Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...

A new Magecart campaign is using Stripe's API infrastructure to host the credit card-stealing payload and the data exfiltrated from checkout pages. The entire malicious activity relies on Google Tag ...

今回のアップデートでは、AppleとそのエコシステムがIntelベースのアーキテクチャのサポートを段階的に終了する傾向を受け、Node.jsプロジェクトが今後もmacOS向けユニバーサルバイナリ（Apple ...

Fake Claude Code installer malware used Google Ads to place spoofed AI tool pages above real documentation since March 2026.

～業界初、家賃保証業務のシームレスな業務フローを実現～ 　株式会社ジャックス（本部：東京都渋谷区、代表取締役社長：村上 亮、以下「ジャックス」）と株式会社ビジュアルリサーチ（本社：東京都港区、代表取締役社長：小野 貴広、以下「ビジュアルリサーチ」）は ...

Claude Code Dynamic Workflows, launched May 28, 2026, replaces context-window orchestration with a JavaScript script Claude writes on the fly for each task. Runs cap at 1,000 parallel subagents with ...

Amid mounting student complaints over CBSE’s new On-Screen Marking system, a Class 12 student and cybersecurity researcher has alleged that major vulnerabilities in the portal could have enabled OTP ...

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.