GitHub Copilot CLI Malware: RoguePilot Attack Hits 2026
Two critical GitHub Copilot vulnerabilities allow malware execution without user approval. Microsoft patched RoguePilot but dismissed the CLI exploit. Here's what developers need ...
California Mandates Age Verification in ALL OS by 2027
California’s Digital Age Assurance Act (AB-1043), signed into law last October, requires every operating system—including ...
Discord Delays Age Verification After Privacy Backlash
Discord cut ties with Persona after discovering 269 surveillance checks beyond age verification. H2 2026 ...
NPM Supply Chain Attack Targets AI Coding Assistants
Your AI Assistant Might Be Stealing Your Secrets A sophisticated npm supply chain attack is ...
CVE-2026-20841: Windows Notepad RCE Flaw Via Markdown
Microsoft patched a high-severity remote code execution vulnerability in Windows 11 Notepad on February 10, ...
Google API Keys Risk: Gemini Access Without Warning
Google API keys that developers embedded in websites for Maps and Firebase now also authenticate to Gemini AI—exposing private files and billable services. ...
Okta AI Agent Authorization Gap: 91% at Risk in Workspaces
Okta has publicly identified a critical authorization gap affecting AI agents in shared workspaces, exposing ...
ClawHub Malware: 341 AI Agent Skills Steal Crypto Assets
Security researchers discovered 341 malicious skills in ClawHub, the marketplace for OpenClaw AI agents, in ...
NY 3D Printer Law: DRM Mandate Will Fail Like DVD Encryption
New York wants every 3D printer sold in the state to include “blocking technology” that ...
Post-Quantum Cryptography 2026: 27-Month CNSA 2.0 Countdown
The countdown to quantum-resistant cryptography is on. In 27 months, on January 1, 2027, all ...