Hackaday

This Week In Security: Docker Auth, Windows Tools, And A Very Full Patch Tuesday

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...
Decrypt

Circle Hit With Class Action Lawsuit Over $285M Drift Protocol Hack

Lawyers allege Circle failed to freeze stolen USDC during an eight-hour window as hackers moved funds from the exploited ...

At least a dozen crypto entities attacked since Drift Protocol hack

A wave of crypto hacks and attacks followed the Drift exploit, hitting at least 12 entities, including Rhea Finance and Grinex, this week.

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...

Unpatched Microsoft Defender flaw lets hackers gain admin access

A security researcher has published a working exploit for a Microsoft Defender security flaw that affects Windows 10, 11, and ...

Massive Chrome Extension Scam Exposes 20,000 Users to Data Theft

Researchers linked 108 malicious Chrome extensions to a coordinated campaign that exposed about 20,000 users to data theft, ...

Google Attack Warning—Chrome Hackers Target Gmail And YouTube Users

Google hackers strike as Gmail, YouTube, Telegram and TikTok users are targeted by 108 dangerous Chrome browser extensions in ...
ESX Virtualization

How-to Update Lab with XCP-NG and Xen Orchestra built from sources

A couple of months ago I installed a lab (a nested virtual lab running under VMware Workstation) with XCP-NG and Xen Orchestra. This virtualization ...
The Hacker News

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

Techie Tonic: Two CISOs warn Axios breach changes supply chain trust model

Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...

Hackers exploit React2Shell in automated credential theft campaign

Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell ...
Windows Report

Axios Hack Bypasses GitHub Protections and Installs Hidden Malware on Systems

The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through malicious npm releases. Security researchers from StepSecurity identified ...