Decrypt

Whale.io Launches Whale Printer: $WHALE Token Staking

Whale.io is excited to announce the official the launch of Whale Printer, an on-platform staking system for the native $WHALE ...
Decrypt

Google's DiffusionGemma AI Hits 1,000 Tokens Per Second—And It's Free

DiffusionGemma hits 1,000 tokens per second by ditching word-by-word generation entirely. It just doesn't run on most ...
The Next Web

A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month

The codexui-android npm package silently exfiltrated OpenAI Codex auth tokens to an attacker server for a month, affecting 29,000 weekly downloads.

Vibe Coding Cheat Sheet: Tools, Prompts, Security Tips, and More

This vibe coding cheat sheet explains how plain-language prompts can build apps fast, plus the planning, testing, and ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.
Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...