News

Max severity Argo CD API flaw leaks repository credentials

An Argo CD vulnerability allows API tokens with even low project-level get permissions to access API endpoints and retrieve ...

PyPI invalidates tokens stolen in GhostAction supply chain attack

The Python Software Foundation team has invalidated all PyPI tokens stolen in the GhostAction supply chain attack in early ...
Torque News

My Tesla Model Y Was Remotely Unlocked By Thieves Who Compromised My Tessie API Token, Then They Arrived Three Minutes Later To Ransack The Vehicle

Thieves just hacked a Tesla Model Y by compromising a third-party app’s API token, remotely unlocking the car in the middle ...

SwissBorg hacked for $41M SOL after third-party API compromise

Hackers exploited Kiln’s API to drain 193,000 SOL ($41M) from SwissBorg’s Solana Earn program. The firm pledged ...

The AI browser security gap: Comet and 1Password partner to protect credentials

AI-powered browsers require a whole new approach to security, so 1Password and Perplexity have teamed up to incorporate ...

Actor auth tokens gave Global Admin access across Azure Entra ID tenants

A Dutch security researcher has published an indepth analysis of a critical vulnerability that could have allowed attackers ...
The Hacker News

SilentSync RAT Delivered via Two Malicious PyPI Packages Targeting Python Developers

Zscaler reveals SilentSync remote access trojan hidden in two malicious PyPI Python packages, risking browser data theft and ...
Crypto News

Swiss Crypto Platform SwissBorg Hit by $41.5M SOL Hack After Partner API Compromise

SwissBorg has reported SOL losses after a partner breach; API provider Kiln has been compromised, with the treasury covering ...

Mureka AI Launches V7.5 Model with Revolutionary Music Quality and Creativity Enhancement

Mureka, a global leader in AI music creation, announced the launch of its V7.5 model, featuring improvements in music quality ...
Decrypt

BDACS, Woori Bank Launch South Korea’s First Won-Backed Stablecoin on Avalanche

Asia’s stablecoin race is hotting up as South Korea joins the fray with its first fully regulated won–backed stablecoin.

Qwen3-Max arrives in preview with 1 trillion parameters, blazing fast response speed, and API availability

With more than 1 trillion parameters, Qwen3-Max-Preview signals Alibaba Cloud’s ongoing investment in scaling AI systems. As ...