Dark Reading

Automated Credential Harvesting Campaign Exploits React2Shell Flaw

An emerging threat cluster is exploiting vulnerable Web-exposed Next.js apps and using an automated tool to steal credentials ...
SecurityWeek

React2Shell Exploited in Large-Scale Credential Harvesting Campaign

The UAT-10608 hacking group is using automated scanning and scripts to exploit React2Shell in a large-scale credential ...
TechPP

13 Best Websites to Download Free PC Games in 2026 (Safe & Legal)

Looking for free PC games? Here are 13 safe, legal websites to download free PC games right now and no credit card needed.

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
MIT Technology Review

The Download: gig workers training humanoids, and better AI benchmarks

Zeus is a data recorder for Micro1, which sells the data he collects to robotics firms. As these companies race to build ...