The Hacker News

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

Inside Pearlstone's changes to The Code project on South Lamar

Pearlstone Partners' CEO explains how the company pivoted the use of one of its newest properties in Austin called The Code ...

New York firm completes $48M makeover of aging Camden residential tower

Once plagued by crime and deferred maintenance, the 21-story building near the base of the Ben Franklin Bridge now boasts ...

Another bug hunter leaks Microsoft exploits in defiance of company’s handling of vulnerability disclosures

Yet another aggrieved bug hunter has leaked a vulnerability affecting a Microsoft product after becoming disillusioned with ...
TechCrunch

Meet Wander, a StumbleUpon-inspired tool for discovering the ‘small web’

As search becomes increasingly dominated by AI summaries and commercial content, people are experimenting and coming up with ways to make the web feel more human like it used to, building everything ...
BankInfoSecurity

XenoRAT Espionage Campaign Targets Afghan Finance Ministry

A suspected Pakistan-linked cyberespionage group targeted Afghanistan's Ministry of Finance in a spear-phishing campaign ...

Smith has tiebreaking 2-run triple in 8th to help the Astros beat the Pirates 11-9

Cam Smith hit a tiebreaking two-run triple to cap Houston’s six-run eighth inning, Isaac Paredes homered and the Astros ...
InfoQ

Next.js 16.2: 400% Faster Dev Startup, Faster Rendering, and Deeper Tooling for AI Agents

Vercel has released Next.js 16.2, featuring performance enhancements that make development startup 400% faster and rendering ...

I asked ChatGPT to help me learn coding in a 12-Sunday upskilling plan: AI gives me structured routine

I am a software engineer. But, there is one thing still missing from my profile: coding. I asked ChatGPT to prepare a ...

Cisco patches critical vulnerability in Unified CM and more

Cisco addresses security vulnerabilities in three products, including a critical one in Unified Communications Manager.
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.
The Caledonian-Record

Lassie Raises $35M Led by Andreessen Horowitz to Build AI for Small Businesses to Run Themselves

Lassie, the company building autonomous systems to run small businesses, announced it has raised $35 million in Series A financing, bringing its total capital raised to $47 million. The round was led ...