Windows Report

Axios Hack Bypasses GitHub Protections and Installs Hidden Malware on Systems

The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through malicious npm releases. Security researchers from StepSecurity identified ...
Cyber Daily

First draft of Children's Online Privacy Code made public

The first draft of the Children’s Online Privacy Code has been published, marking a significant step forward in prioritising ...
The Caledonian-Record

SQRIL: First to Launch Stablecoin-to-Fiat QR Code Payments in Thailand and Cambodia

SQRIL, the world’s first crossborder scan-to-pay QR code infrastructure for emerging markets, today announced its expansion into Thailand and Cambodia. This milestone makes ...
Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...

GitHub developers targeted by fake VS Code alerts spreading malware

Socket uncovers large-scale GitHub spam campaign abusing “Discussions” notifications Fake advisories with bogus CVEs trick ...