The Hacker News

GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

The Hacker News May 20, 2026

GitHub on Wednesday officially confirmed that the breach of its internal repositories was the result of a...

Read More Read more about GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks

Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks

The Hacker News May 20, 2026

Drupal has released security updates for a "highly critical" security vulnerability in Drupal Core that could be...

Read More Read more about Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks

Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development

• Uncategorized

Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development

The Hacker News May 20, 2026

Microsoft has unveiled two new open-source tools called RAMPART and Clarity to assist developers in better testing...

Read More Read more about Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development

Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks

• Uncategorized

Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks

The Hacker News May 20, 2026

Microsoft on Tuesday said it disrupted a malware-signing-as-a-service (MSaaS) operation that weaponized the company's Artifact Signing system...

Read More Read more about Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks

Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API

Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API

The Hacker News May 20, 2026

Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying...

Read More Read more about Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API

Agent AI is Coming. Are You Ready?

Agent AI is Coming. Are You Ready?

The Hacker News May 20, 2026

New Industry Data Just Released Suggests Not. On May 19th, 2026, Orchid Security released the results of our...

Read More Read more about Agent AI is Coming. Are You Ready?

GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

The Hacker News May 20, 2026

GitHub on Tuesday said it's investigating unauthorized access to its internal repositories after the notorious threat actor...

Read More Read more about GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

Typosquatting Is No Longer a User Problem. It’s a Supply Chain Problem

Typosquatting Is No Longer a User Problem. It’s a Supply Chain Problem

The Hacker News May 20, 2026

AI-generated lookalike domains are now embedded inside the third-party scripts running on your web properties. Here's why...

Read More Read more about Typosquatting Is No Longer a User Problem. It’s a Supply Chain Problem

Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit

• Uncategorized

Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit

The Hacker News May 20, 2026

Microsoft on Tuesday released a mitigation for a BitLocker bypass vulnerability named YellowKey following its public disclosure...

Read More Read more about Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit

Grafana GitHub Breach Exposes Source Code via TanStack npm Attack

• Uncategorized

Grafana GitHub Breach Exposes Source Code via TanStack npm Attack

The Hacker News May 19, 2026

Grafana Labs, on May 19, 2026, said an investigation into its recent breach found no evidence of...

Read More Read more about Grafana GitHub Breach Exposes Source Code via TanStack npm Attack