CBSE Cybersecurity Put To The Test: 19-Year-Old Ethical Hacker Flags OSM Portal Flaws, Board Responds

The Central Board of Secondary Education (CBSE) has been hit by a fresh digital storm after a 19-year-old cybersecurity researcher, Nisarga Adhikary, claimed to have revealed critical vulnerabilities ...
Tech Times

npm Supply Chain Attacks Hit GitHub: 2FA Approval Gate Now Blocks Stolen CI Tokens

GitHub’s internal repositories — now staged publishing in npm 11.15.0 requires a human 2FA approval before any package goes ...
CSO Online

TrapDoor malware campaign puts developer workstations in CISO spotlight

Malicious packages across npm, PyPI, and Crates.io show how poisoned developer workflows can become a route into enterprise systems.
SecurityWeek

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...