Update Chrome ASAP! The first zero-day flaw of 2026 is patched

An update for Chrome was sent out late last week with a single, solitary fix: the first zero-day exploit discovered so far ...

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

Duck dupe criminals nabbed: Embark is dishing out warnings and even ban hammers for miscreants abusing recent duplication glitches in Arc Raiders

In other words, if you were merely checking things out to see what the fuss was about, then you're likely off the hook. But ...

Arc Raiders Dev Says Players Who Used 'Recent Exploits' Will Face Warnings and Suspensions Starting This Week

The duck days are over.
The Hacker News

SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer

SmartLoader campaign spreading StealC via a trojanized Oura MCP server using fake GitHub forks to steal credentials and crypto funds.

Scammers target Verizon customers after $20 credit tied to outage

Verizon customers warned of $20 credit scams after a Jan. 14 outage. Experts advise claiming credits via the My Verizon app and avoiding suspicious links.