SecurityWeek

Critical SimpleHelp Vulnerability Exploited for Malware Delivery

A threat actor has been exploiting CVE-2026-48558, a critical SimpleHelp vulnerability, to drop TaskWeaver and Djinn Stealer ...
SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
CoinDesk

Private keys, not smart contracts, caused 40% of crypto's $16 billion hack losses. Here's whats being done.

The industry is moving toward fixing the private key vulnerability issue, just not evenly, Wish Wu, co-founder and CEO of ...
techtimes

Polymarket Loses $3.1M to Frontend Vendor Hack While CFTC Investigation Deepens

The prediction market company Polymarket prepares to open a free grocery store in Manhattan on February 12, 2026 in New York City. Spencer Platt/Getty Images Polymarket, the world's largest ...

PayU launches AI-ready developer tools for faster payment integrations

PayU, India’s leading diversified fintech platform, has announced two new developer tools designed to streamline modern payment workflows: PayU CLI and Builder MCP. The tools aim to simplify ...

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...

Canadian hacker Aubrey Cottle sentenced to 18 months custody after pleading guilty to cyberattack charges

Canadian hacker Aubrey Cottle has been sentenced to 18 months in custody after pleading guilty to three charges stemming from ...
cybernews

Someone hacked Johnson & Johnson's internal systems to teach it a lesson

A cybersecurity researcher uncovered two authentication flaws in Johnson & Johnson web applications that exposed sensitive recruiter tools, employee records, and an internal audit management system.
The Currency Analytics

Polymarket’s $3 Million Frontend Hack Hits 11 Wallets Holding PUSD

Polymarket got hit. A suspected phishing attack on one of the platform's third-party vendors let hackers inject malicious ...
blockonomi

Polymarket Hack: $3M Drained in Supply-Chain Frontend Attack

Polymarket hack stemmed from a compromised third-party vendor that injected malicious JavaScript into the platform’s frontend. Over 11 wallets lost PUSD on Polygon; stolen funds were bridged to ...