Credential theft fell to 13% of breach vectors in 2026. Attackers now bypass MFA via help desk resets and OAuth token theft.

Solana (SOL) has been commanding attention again, with whispers of a $1 billion institutional purchase led by Galaxy, Jump, and Multicoin Capital. A buy of that scale could give Solana the liquidity ...

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

The largest DeFi hack this year took place last week on April 1 as Drift Protocol, one of the largest perp DEXs on the solana network, experienced an exploit that saw roughly $286 million vanish from ...

XRP, and Cardano (ADA) are compared based on presale activity, Layer-2 development, regulatory developments, and payment ...

A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system. The ...

Debug flag disabled Microsoft 365 Android token checks, letting untrusted apps access accounts; patches issued May 12 to ...

Videos advertising free subscriptions are leading victims away to download and install malware via command-line tools.

A flaw in Claude Code's GitHub Action let attackers bypass permission checks via fake bots and steal OIDC tokens through prompt injection.

The Solana Foundation revealed a vulnerability in its token system that could have allowed unauthorized minting or withdrawals. The flaw was related to the ZK ElGamal Proof program, affecting ...

A github.dev flaw could let attackers steal GitHub OAuth tokens through a one-click attack, exposing private repositories and ...