Follow Cyber Kendra on Google News! | WhatsApp | Telegram

Add as a preferred source on Google
Posts
Anthropic's Claude Code source code exposed via npm package

Anthropic's Claude Code source code exposed via npm package

A 59.8 MB JavaScript source map file — a debugging artifact that translates compressed, minified code back into readable source — was accidentally bu…
Opening a Single File in Vim Can Hand Attackers Full Control of Your System

Opening a Single File in Vim Can Hand Attackers Full Control of Your System

A two-bug chain quietly sitting in Vim since version 9.1.1391 lets a malicious file execute arbitrary shell commands the moment you open it — no plug…
Axios Hack Alert: Malicious npm Versions Drop RAT on macOS, Windows, and Linux

Axios Hack Alert: Malicious npm Versions Drop RAT on macOS, Windows, and Linux

Developers relying on axios — the JavaScript HTTP client installed over 300 million times weekly — woke up Tuesday to a nightmare scenario: two versi…
Telegram 0-Day: One Sticker Could Hack You — Telegram Calls It Fake

Telegram 0-Day: One Sticker Could Hack You — Telegram Calls It Fake

[Updated: March 30, 2026 — Score revised from 9.8 to 7.0. Original story below.] On Sunday, Telegram's official account dismissed a newly disclos…
Apple's Swift Programming Language Now Officially Builds Android Apps

Apple's Swift Programming Language Now Officially Builds Android Apps

After roughly a year of groundwork, Apple's Swift programming language has crossed what was once considered an uncrossable line — it now official…
ShinyHunters Claims 350GB EU Commission Breach — Databases, Emails, and Contracts Up for Leak

ShinyHunters Claims 350GB EU Commission Breach — Databases, Emails, and Contracts Up for Leak

The European Commission confirmed on Friday that its public-facing web infrastructure was hit by a cyberattack discovered on March 24 — and now a th…
The LiteLLM Hack Was Just the Opening Move. Now 300K Dark Web Users Are Being Armed With Ransomware

The LiteLLM Hack Was Just the Opening Move. Now 300K Dark Web Users Are Being Armed With Ransomware

What started as a poisoned Python package has evolved into something with far darker implications — a coordinated alliance between supply chain hacke…
Hackers Are Actively Exploiting a Critical Microsoft SharePoint Flaw — Patch Now

Hackers Are Actively Exploiting a Critical Microsoft SharePoint Flaw — Patch Now

Attackers are exploiting a critical remote code execution (RCE) vulnerability in Microsoft SharePoint that Microsoft patched two months ago but many …
Hackers Poisoned a Python Package Trusted by 95 Million Monthly Installs — and It Stole Everything

Hackers Poisoned a Python Package Trusted by 95 Million Monthly Installs — and It Stole Everything

The Python package that quietly powers AI infrastructure for thousands of organizations — routing API calls across OpenAI, Anthropic, Bedrock, and 10…
10 Top AI Tools for Red Teaming in 2026

10 Top AI Tools for Red Teaming in 2026

Red teaming has traditionally been defined by creativity, unpredictability, and human intuition. Unlike vulnerability assessments, red team operation…