AI finds critical ImageMagick vulnerabilities in default configurations

An AI pentesting tool has discovered critical vulnerabilities in default ImageMagick configurations. Workarounds offer ...

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
IndianWeb2

Cloudflare Launches EmDash as WordPress Alternative with Built‑In Security and Payments

EmDash, the secure serverless CMS successor to WordPress, fixes plugin risks and empowers global publishing in the AI era.” ...
Hosted on MSN

This free, self-hosted, open-source tool is my new favorite way to transfer files locally between devices

I've been on a bit of a NAS kick lately, and discovering the world of apps you can host on your own server has been challenging and rewarding in equal amounts. One of the cooler apps I've had the ...
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...