Cursor AI code editor faces unpatched vulnerability enabling code execution, adding to a string of critical RCE flaws ...
Ostium DEX drained $18M USDC via compromised oracle key on Arbitrum. Attacker used future-dated prices to loop profitable trades and empty vault. Major RWA perp protocol hit despite $27.8M funding ...
An unpatched vulnerability in Cursor on Windows could allow attackers to achieve code execution via malicious repositories.
A hacker used Ostium's own price-reporting infrastructure against the protocol, submitting falsified future-dated oracle data to manufacture fake trading profits and trigger an $18 million payout.
Upwind traces multiple compromised AsyncAPI npm packages to a coordinated supply chain attack targeting software release pipelines and publishing identities.
Malicious Jscrambler NPM package versions distributed a cross-platform credential stealer in a new supply chain attack.
The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...
The Swift Package Index is no longer independent as Apple has taken control, but it will remain an open source search engine for third-party code. The Swift Package Index gave developers one trusted ...
New activity targets CVE‑2026‑20230, an SSRF bug that can allow unauthenticated file writes and potential root‑level access on vulnerable systems. A critical Cisco Unified CM vulnerability is now ...
Community-run Swift package search engine and metadata index Swift Package Index is joining Apple, but says little is changing for developers in the near term. Here are the details. Most Swift ...
GameSpot may receive revenue from affiliate and advertising partnerships for sharing this content and from purchases through links. It’s a story as old as time: a new Destiny 2 update arrives, and ...