Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

YouTube killed my comment alerts, so I vibe-coded a fix to get them back - in just 1 hour

YouTube killed my comment alerts, so I vibe-coded a fix to get them back - in just 1 hour ...
The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...
TechCrunch

US and EU police shut down LeakBase, a site accused of sharing stolen passwords and hacking tools

U.S. and European law enforcement have seized the database from LeakBase, which prosecutors have touted as “one of the world’s largest online forums for cybercriminals” for sharing stolen passwords ...
NBC Chicago

Instagram addresses security concerns after users receive password reset emails

Despite rumors of a potential security breach after many Instagram users received unexpected password reset emails recently, the social media platform said there was no hack. According to a statement ...
Android

Instagram 'Suspicious' Password Emails Were a Glitch, Not a Hack

Last Friday, a report from Malwarebytes claimed that data from nearly 17.5 million Instagram accounts is being sold on the dark web. The report cited multiple user reports claiming suspicious password ...
GitHub

python-hack

WiFi Password Cracker is a Python script that retrieves saved WiFi profiles and their passwords on a Windows machine. It uses the netsh command to access and display this information. The script uses ...