ConsumerAffairs

A database of 149 million passwords was exposed — and it could affect you

More than 149 million passwords were exposed in an unsecured database, including logins for social media, streaming services, ...

Act Now—48 Million Gmail Usernames And Passwords Leaked Online

Are your Gmail login credentials amongst the 48 million estimated as exposed in this leak of existing infostealer logs — here ...

Notepad++ Compromised in Sophisticated Nation-State Attack

Notepad++ has been compromised in a sophisticated nation-state cyberattack. Learn about the security breach, the ...
Dark Reading

Google Looker Bugs Allow Cross-Tenant RCE, Data Exfil

Attackers could even have used one vulnerable Lookout user to gain access to other Google Cloud tenants' environments.
eWeek

Moltbook Bots Build Lobster Cult

Who needs humans when a purported 1.5 million agents trade lobster memes and start their own religion? Moltbook, vibe-coded by Octane AI founder Matt Schlicht in a weekend (he cla ...

Tenable Research Uncovers Major Vulnerabilities in Google Looker

Tenable Research has identified two major vulnerabilities dubbed “LookOut,” in Google Looker. The popular business ...
CSO Online

Software supply chain risks join the OWASP top 10 list, access control still on top

There were some changes to the recently updated OWASP Top 10 list, including the addition of supply chain risks. But old ...
Infosecurity Magazine

Microsoft Fixes Six Zero Day Vulnerability in February Patch Tuesday

CVE-2026-21525 is a denial-of-service vulnerability affecting the Windows Remote Access Connection Manager. “Exploitation is local, requires no privileges, and does not rely on user interaction,” ...
Security Boulevard

The Complete Guide to Authentication Implementation for Modern Applications

A comprehensive developer guide to implementing secure authentication in modern applications. Covers OAuth 2.0, OIDC, passwordless authentication, passkeys, and enterprise SSO with production-ready ...
The Hacker News

Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows

Critical n8n v CVE-2026-25049 allows authenticated workflow abuse to execute system commands and expose server data.