New Scientist

Security credentials inadvertently leaked on thousands of websites

Researchers identified nearly 10,000 websites where API keys could be found, exposing details that could let attackers access ...
PCMag

Stop Using Passwords. Here's Why You Should Switch to Passkeys ASAP

Passkeys offer far stronger security than traditional passwords—and may eventually replace them. We break down everything you ...
Analytics Insight

SpyCloud’s 2026 Identity Exposure Report Reveals Explosion of Non-Human Identity Theft

Austin, TX, USA, March 19th, 2026, CyberNewswire New Report Highlights Surge in Exposed API Keys, Session Tokens, and Machine Identities, and more.SpyCloud, the ...
WinBuzzer

GhostClaw Fake OpenClaw Installer Steals macOS Dev Credentials

JFrog has uncovered GhostClaw, a fake OpenClaw npm package that stole Keychain passwords, cloud credentials, and crypto ...
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Malicious campaign targets popular OpenWebUI AI interface to mine crypty and steal credentials

Cybernews researchers uncovered numerous OpenWebUI instances that were silently running malware.
Security Boulevard

News alert: SpyCloud study reveal stolen tokens, session data fuel surge in non-human identity attacks

SpyCloud, the leader in identity threat protection, today released its annual 2026 Identity Exposure Report, one of the most ...

Visa and Stripe-backed Tempo unveil AI agent payment tools on same day

The Stripe-backed Tempo blockchain launched on mainnet and released a payments protocol for AI agents, while Visa released a tool to simplify AI agent payments.
Windows Report

How OpenClaw and API-Driven Workflows Are Redefining Windows Productivity

Windows has always been built for power users who automate. Now, OpenClaw and cloud APIs like WayinVideo are ushering in a ...

Three high-risk AI vulnerabilities discovered in Claude.ai – end-to-end attack chain exfiltrates sensitive info without user knowing

Oasis researchers uncover “Cloudy Day” attack chain in Claude Exploits include invisible prompt injection, data exfiltration ...