VS Code zero-day lets hackers steal GitHub tokens in one click
VS Code zero-day lets hackers steal GitHub tokens in one click By Sergiu Gatlan June 3, 2026 02:50 AM A security researcher has released exploit code for a Visual Studio…
Search
All sources
bleepingcomputer.com
39
theregister.com
21
techcrunch.com
7
tomshardware.com
5
appleinsider.com
5
tweaktown.com
5
techradar.com
4
pcper.com
4
pcworld.com
3
androidauthority.com
3
wired.com
3
fudzilla.com
3
Videos
More videosTop stories
Microsoft faces security community backlash over Nightmare Eclipse
…Kevin Beaumont, a former Microsoft security engineer, called the situation "a dumpster fire of their own making," noting that Microsoft previously hired SandboxEscaper after she published zero-day exploit code without warning…
Ransomware crims abused Cisco 0-day weeks before disclosure
Security Ransomware crims abused Cisco 0-day weeks before disclosure, says Amazon security boss Interlock's post-exploit toolkit exposed Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco…
Škoda warns of customer data breach after online shop hack
…After detecting the breach, the company reported the incident to the relevant authorities and has fixed the security flaw exploited in the attack. "As part of our technical security monitoring, we discovered…
Max severity Cisco Secure Workload flaw gives Site Admin privileges
…Product Security Incident Response Team (PSIRT) has not found evidence that the vulnerability has been exploited in the wild before publishing this week's advisory. Earlier this month, Cisco warned that another…
Do you use Microsoft Exchange? Hackers are actively exploiting a new zero-day flaw
…On Thursday, Microsoft announced mitigations for a high-security Exchange Server vulnerability that's being actively exploited by hackers. All an attacker needs to do is send a specially crafted email that…
Advancing Protection in Chrome on Android
…Always Use Secure Connections has two modes—warn on insecure public sites, and warn on any insecure site. Any user can enable “Always Use Secure Connections” in the Chrome Privacy and Security…
US says troops were targeted with location data, as senator warns ad industry is a 'national security threat' | TechCrunch
…9:21 AM PDT · May 28, 2026 Zack Whittaker US says troops were targeted with location data, as senator warns ad industry is a ‘national security threat’ The U.S. Department of…
CISA flags actively exploited ‘Copy Fail’ Linux kernel flaw enabling root takeover across major distros — unpatched systems may remain vulnerable to attack
…Cybersecurity and Infrastructure Security Agency (CISA) added a newly disclosed Linux vulnerability, dubbed “Copy Fail,” to its Known Exploited Vulnerabilities catalog on May 1st, warning that the flaw, tracked as CVE-2026…
Exploit available for new DirtyDecrypt Linux root escalation flaw
…The Cybersecurity and Infrastructure Security Agency (CISA) added Copy Fail to its list of flaws exploited in attacks on May 1 and ordered federal agencies to secure their Linux devices within two…