Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data

Application security company Checkmarx has confirmed that the LAPSUS$ threat group leaked data stolen from its private GitHub ...
The Hacker News

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace ...
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.

CheckMarx admits it was hit by major cyberattack that saw data leaked onto Dark Web

CheckMarx confirms March 2026 attack did result in data theft.

Identifi Launches AI-Powered Signature Detection for Fast, Accurate Document Review

The signature gap in traditional document tracking. Document tracking systems were built to confirm what arrived, not to evaluate what is already there. Institutions flag unfulfil ...

OxyContin maker Purdue Pharma sentenced, ordered to pay over $5B for role in opioid epidemic

No member of the Sackler family — the billionaire dynasty that owned and ran Purdue Pharma — has ever been criminally charged ...

Warp Open-Sources Its Agentic Development Environment, Introducing a New Model for Building Software with Cloud Agents

Sponsored by OpenAI, Warp launches an open-source ADE where users can submit ideas and watch agents build and ship them ...
CSO Online

Critical Cursor bug could turn routine Git into RCE

A flaw in Cursor’s AI agent lets malicious repositories trigger arbitrary code execution through routine Git operations, now ...

Visual Studio 2026 gets cloud agent integration

Thanks to cloud agents, remote coding sessions can now be started from within the IDE, and the C++ code editing tools are ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...
WeLiveSecurity

GopherWhisper: A burrow full of malware

ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian ...
Visual Studio Magazine

Visual Studio 2026 Gives IntelliSense Priority in Longstanding Copilot Completion Clash

The April update suppresses Copilot completions while IntelliSense is active, addressing a long-running editor conflict.