New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
Opinion
HackadayOpinion

This Week In Security: Messing With AI, 7Zip And Notepad++ Vulnerabilities, HTTP2 Bomb, And More

With the rise of AI coding assistants continuing apparently unabated, some project maintainers have begun striking back. Ars Technica reports on projects putting hostile directions into the ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.
The Hacker News

Microsoft Fixes One-Click GitHub Dev Attack That Let Attackers Steal OAuth Tokens

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.
progameguides

Steal the Brainrot Fortnite Codes (May 2026)

Make sure to redeem 627384 code and more for some amazing freebies! Fortnite is taking a piece out of Roblox’s cake with these game modes; they even have Steal the Brainrot Fortnite codes to boot. If ...
Visual Studio Magazine

Microsoft Adds AI Hackathon to VSLive! @ Microsoft HQ

The VSLive! Microsoft AI Hackathon 2026 will run alongside VSLive! @ Microsoft HQ in Redmond, Wash. The in-person event is scheduled for July 28-30, with evening build sessions and awards before the ...