Fake VS Code alerts on GitHub spread malware to developers

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the ...
Dexerto

Cookie Run: OvenSmash codes (March 2026)

OvenSmash has just released, and alongside some familiar faces is a coupon code redemption feature that works similarly to ...

Why T-Rex Cookie founder is content with breaking even at MSP airport shop

T-Rex Cookie's airport kiosk doesn't turn a profit, but founder Tina Rexing doesn't mind as she uses the high-traffic ...

Makena Hawaii expands as founders leverage two decades of retail experience

Makena Hawaii, a jewelry brand from the owners of SoHa Living, opened its first retail location just last year. Now, it’s got ...

Every time Trump has attacked Starmer over the Iran war - as PM vows to not 'back down'

Sir Keir Starmer says Donald Trump is seeking to "put pressure on me in different ways" - but has insisted that he won't ...

Three areas industry is warning government about due to Iran war

Concerns over queues at the petrol pump are growing at the very top levels of both business and government.

Bubble AI app builder abused to steal Microsoft account credentials

Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building ...
The Hacker News

GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data

GlassWorm uses Solana and Google Calendar dead drops to deliver RAT stealing browser data and crypto wallets, impacting ...
Hoodline

Fake CAPTCHA Scam Tricks Windows Users Into Installing Password-Snatching Malware

Fake CAPTCHA pages can install the StealC infostealer. Don't paste or run commands; disconnect and change passwords.
Security Boulevard

An Evolving GlassWorm Malware is Making the Rounds of Code Repositories

GlassWorm is evolving. Security researchers say the malware, which infiltrates code repositories with malicious extensions, can now deploy a RAT, is targeting MCP servers, and has a new way of moving ...
SecurityWeek

Tycoon 2FA Fully Operational Despite Law Enforcement Takedown

The Tycoon 2FA phishing platform’s operations have been largely unaffected by the recent law enforcement takedown attempt.
TidBITS

DarkSword Exploit Threatens iPhones Still Running iOS 18

Security researchers have discovered DarkSword, a sophisticated exploit chain targeting iOS 18.4 through 18.7.2. Unlike past spyware aimed at high-profile targets, DarkSword is being surreptitiously ...