Decrypt

OWASP Releases 2026 Smart Contract Risk List Led by CredShields

Crypto protocols lost hundreds of millions of dollars to smart contract failures in 2025. Now, the OWASP Smart Contract Security Project has released the OWASP Smart Contract Top 10 2026, a forward ...
The Hacker News

ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories

ThreatsDay Bulletin tracks active exploits, phishing waves, AI risks, major flaws, and cybercrime crackdowns shaping this week’s threat landscape.

Google Issues Emergency Chrome Update — 0Day Exploit Confirmed

Don’t delay, ensure Chrome is updated now as Google confirms an emergency security alert. CVE-2026-2441 exploited in the wild ...

Leaky Chrome extensions with 37M installs caught divulging your browsing history

Hundreds of popular add‑ons used encrypted, URL‑sized payloads to send search queries, referrers, and timestamps to outside servers, in some cases tied to data brokers and unknown operators.
Infosecurity Magazine

Researchers Reveal Six New OpenClaw Vulnerabilities

OpenClaw has patched six new vulnerabilities in its popular agentic AI assistant, covering server-side request forgery (SSRF), missing authentication and path traversal bugs, according to Endor Labs.
Infosecurity Magazine

Flaws in Popular Software Development App Extensions Allow Data Exfiltration

Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain ...
PCMag on MSN

Microsoft Previews Built-In Speed-Test Tool for Windows 11

The tool, rolling out now to Windows Insiders, is accessible from the taskbar, but it opens and runs in your default browser.