The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
SecurityWeek

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

Vulnerabilities in PDF platforms from Foxit and Apryse could have been exploited for account takeover, data exfiltration, and other attacks.

New HIV drug may end multi-pill regimen for older people

People who have lived with HIV long-term can need up to a dozen pills every day to suppress the virus. Results from a new ...
The Herald News

Huazheng Expands Global Presence as a Future Leading Primary Current Injection Tester Supplier

BAODING, HEBEI, CHINA, January 15, 2026 /EINPresswire.com/ — The global power testing and electrical commissioning industry is entering a period of steady growth ...

Fake Next.js job interview tests backdoor developer's devices

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, ...