Microsoft

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft

Hulud payload to steal CI/CD secrets from Linux-based automation environments. The malware executes during npm install and ...

MegaConvert.io Launches Free File Converter With 500+ Formats in 47 Languages

Free platform converts documents, images, video, audio, and ebooks from any browser — no signup required. Developer API included. We built MegaConvert to be the simplest file converter on the web — no ...
The Caledonian-Record

Proofpoint Integrates with the Claude Compliance API to Extend Data Security and Governance to ...

Organizations gain unified visibility across AI prompts, responses, files, activity logs, and workflows.Customers can extend existing data loss, behavioral risk, and supervision controls into Claude w ...

Google publishes exploit code threatening millions of Chromium users

Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens ...

AI.cc Releases AI Translator API, Targeting Enterprises Replacing Legacy Translation Infrastructure

SINGAPORE, SINGAPORE, SINGAPORE, May 21, 2026 /EINPresswire.com/ -- New API delivers neural machine translation powered ...
Live Bitcoin News

npm Supply Chain Attack Hits @antv: Blockchain Dev Secrets Now Exposed

Mini Shai-Hulud npm campaign compromises @antv packages, targeting blockchain developers' GitHub tokens, AWS keys, and CI/CD secrets in a coordinated supply chain attack.
Biometric Update

1Password, Keycard present tools for secure AI agent credential delegation

Most teams are still securing access with static credentials built for human operators, not for autonomous agents. This ...
Tech Times

GitHub CISO Names Nx Console as Root of 3,800-Repo Breach: OpenAI, Grafana Also Hit

GitHub CISO Alexis Wales confirmed Thursday that a poisoned build of the Nx Console Visual Studio Code extension — live on ...
eWeek

Google AI Studio Cheat Sheet: Features, Pricing, and More

Google AI Studio lets users test Gemini models, build apps, generate media, and export code. Here’s what it does, costs, and ...

Do fear the Reaper - stealer swipes macOS users' passwords, wallets, then backdoors them

A new infostealer variant targets macOS users by spoofing Apple, Microsoft, and Google and then then gets to work searching ...
CSO Online

Expired domain leads to supply chain attack on node-ipc npm package

Attackers performed an email takeover attack on a dormant maintainer account and published new node-ipc versions containing ...

New Shai-Hulud malware wave compromises 600 npm packages

Threat actors earlier today published more than 600 malicious packages to the Node Package Manager (npm) index as part of a ...