A transparency law passed by Congress has forced the release of more Epstein files than ever before, but some lawmakers and victims are exploring ways to push the Justice Department to disclose even ...

You won't have to switch to a browser as often.

Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, ...

An extension I used almost every day was bought by a new owner and loaded up with spyware. It happened in 2024, but Google ...

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.

How can an extension change hands with no oversight?

The campaign, observed in February 2026, has been assessed to share overlaps with a prior campaign mounted by Laundry Bear, a group tracked by Microsoft as Void Blizzard.

DRILLAPP JavaScript backdoor targets Ukraine in Feb 2026, abusing Edge debugging features to spy via camera, microphone, and ...

This story was originally published by Mountain State Spotlight. Get stories like this delivered to your email inbox once a week; sign up for the free newsletter at mountainstatespotlight.org/newslett ...

Powered by the TypesScript-native runtime Bun, Electrobun improves Electron with a smaller application footprint and built-in ...

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.