Dashlane explains how attackers managed to download encrypted password vaults

Dashlane said that attackers mounted a coordinated hacking campaign against a large base of its users in an attempt to ...
DecryptOpinion

Morning Minute: Massive ZCash Exploit Found by Claude, Extent Unknown

The ZCash team hired a hacker to find an exploit in the ZCash protocol, and he exposed a glitch that has been out there for ...
Decrypt

What Is BChat? The Decentralized Messaging App Built for Privacy

Built on the Beldex Network, BChat aims to solve the weaknesses of relying solely on end-to-end encryption (E2EE) for private ...

How to get your files off an Android phone with a broken screen - for free

If you've ever broken your phone's screen but still wanted to get data or files from it, you know how painful that can be, ...

AI-built ransomware toolkit automates EDR evasion, AD discovery

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...

Dozens of Red Hat packages backdoored through its official NPM channel

Official Red Hat NPM accounts have been compromised and used to push a malicious worm that spreads from machine to machine, ...
Blockonomi

Aave’s April 2026 rsETH Incident Post Mortem: How a Forged Bridge Message Shook DeFi

A forged LayerZero bridge message released 116,500 rsETH on Ethereum, hitting Aave V3 markets and sparking a $300M DeFi ...
CoinDesk

Aave overhauls listing standards after $230 million rsETH exploit exposed bridge risks

An official postmortem traced the exploit to a LayerZero bridge verification failure and outlined a sweeping overhaul of Aave ...
The Next Web

A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month

The codexui-android npm package silently exfiltrated OpenAI Codex auth tokens to an attacker server for a month, affecting 29,000 weekly downloads.

What's it like inside Bitdeer's crypto mining operation in Massillon?

What is it like inside now that Bitdeer's crypto mining buildings are operational in Massillon. Here's what's going on inside ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.