Microsoft Confirms Active 0-Day Exploit—Check Emergency Mitigation

Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.
InfoWorld

AntV data visualization tool the latest to be hit by ongoing npm supply chain attacks

The world’s largest open-source registry, node package manager (npm), has been hit by another fast-moving malware attack, ...

Microsoft warns of Exchange zero-day flaw exploited in attacks

On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow ...

UK Eurovision act: The BBC gave me a stress test to check I could cope under pressure

If that's true, then Sam Battle must be the most confident person at this year's Eurovision Song Contest. The musician – who ...
The Hacker News

Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike

Ghostwriter’s March 2026 Ukraine attacks use PDF lures and geofencing to deploy Cobalt Strike on government targets.

Shai-Hulud keeps burrowing: 314 npm packages infected after another account compromise

Popular JavaScript modules including size-sensor and echarts-for-react hit as hijacked account closed GitHub warnings ...

Wix vs. Squarespace: I compared two of the top website builders, and this one wins

When you want to add a new section to the page, Wix gives you three options: Pick from pre-built design templates, start with ...
ZDNet

How to check your Windows PC for expiring security certificates - a big one ends in June

Secure Boot protects modern Windows and Linux PCs. Microsoft Secure Boot certificates from 2011 expire in June 2026. Most PC owners are fine if they install the latest updates. Last year's ...

Belarus-aligned FrostyNeighbor attacks Ukrainian government, again — ESET Research discovers

FrostyNeighbor, a long-running cyberespionage actor apparently aligned with the interests of Belarus, has been active recently in campaigns ...
AARP

Summer TV Preview 2026: The 15 Shows We Can’t Wait to Watch

Mark your calendar with these gems, from reboots of classics like ‘Little House on the Prairie’ to new seasons of ‘House of ...
InfoQ

GitHub Enhances CodeQL with Declarative Security Modeling for Faster, More Flexible Analysis

GitHub has introduced a significant update to its CodeQL engine, enabling developers to define custom sanitizers and ...
CSO Online

Exchange Server zero-day vulnerability can be triggered by opening a malicious email

A newly discovered zero-day vulnerability in Microsoft Exchange Server has experts declaring an emergency and urging CSOs to ...