JD Supra

When the worm targets the assistant: Miasma turns AI coding agents into the trigger

GitHub disabled 73 repositories across four Microsoft organizations on June 5 after the self-replicating supply-chain campaign known as ...

2026 Congressional App Challenge opens for students in NJ's 7th District

The U.S. House STEM competition is open to eligible NJ-07 students competing alone or in teams of up to four.

HotDeals Code Verification Feature Expands Across 23 Markets to Strengthen Coupon Transparency

HotDeals Consumer Savings Index data shows growing consumer preference for verified promo codes over unvalidated discount ...

Faster sales, more listings and higher prices define Central Ohio’s May housing report

Central Ohio’s housing market picked up speed in May, with nearly 350 more home sales than a year ago. Here’s where prices ...
Bleeping Computer

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub. Miasma appears to be an evolution ...

Microsoft patches Exchange Server zero-day exploited in attacks

Microsoft has patched an actively exploited Exchange Server vulnerability that allows threat actors to execute arbitrary ...

npm tackles its riskiest security issues

With npm v12, GitHub closes a central attack vector: installation scripts from dependencies will only run after explicit ...
The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
MSN on MSN

Chrome V8 zero day puts browser patching back in focus

Google’s latest Chrome security update is not a routine maintenance release. It closes CVE-2026-11645, a high-severity flaw in V8 that has already been exploited in real attacks. For users and IT ...