The Hacker News

Over 100 VS Code Extensions Exposed Developers to Hidden Supply Chain Risks

New research has uncovered that publishers of over 100 Visual Studio Code (VS Code) extensions leaked access tokens that ...

‘Nation-state actor’ steals key source code; feds issue emergency warning

CISA issued an emergency directive after F5 source code and undisclosed vulnerabilities were stolen by a nation-state hacker.
Bleeping Computer

Hacker targets other hackers and gamers with backdoored GitHub code

A hacker targets other hackers, gamers, and researchers with exploits, bots, and game cheats in source code hosted on GitHub that contain hidden backdoors to give the threat actor remote access to ...
Bleeping Computer

Amazon AI coding agent hacked to inject data wiping commands

A hacker planted data wiping code in a version of Amazon's generative AI-powered assistant, the Q Developer Extension for Visual Studio Code. Amazon Q is a free extension that uses generative AI to ...
Hosted on MSN

Hacker advertises alleged database of 89 million Steam 2FA codes, source of leak unknown

EnergyWeaponUser advertised a new archive on the dark web They claim it holds phone numbers and OTP codes for Steam Some researchers claim the archive came from Twilio, but the company denied having ...
TechCrunch

HPE investigating security breach after hacker claims theft of sensitive data

Hewlett Packard Enterprise is investigating a data breach after a well-known hacker claimed to have stolen sensitive information from the company. The hacker, who uses the alias “IntelBroker,” claims ...