A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.
Ars Technica

Microsoft open-sources “the earliest DOS source code discovered to date”

Several times in the last couple of decades, Microsoft has released source code for the original MS-DOS operating system that kicked off its decades-long dominance of consumer PCs. This week, the ...

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP ...
Bleeping Computer

Trellix discloses data breach after source code repository hack

Cybersecurity firm Trellix disclosed a data breach after attackers gained access to "a portion" of its source code repository. Trellix is a global cybersecurity company formed from the October 2021 ...
Mashable

Microsoft Edge is storing passwords as plain text? Here's what Microsoft says.

UPDATE: May. 6, 2026, 9:40 a.m. EDT This piece was updated to include a statement from Microsoft. Password managers are supposed to make life easier for users by remembering their passwords and ...

Tired of Hacked Passwords? Help Is on the Way.

Apps from Apple, Google and others can assist in making your online accounts more secure, even as new ways of logging in ...

Man who lost Bitcoin wallet password while high recovers $400,000 using Claude AI after 11-year lockout

An X user with the handle cprkrn writes that he was locked out of his wallet over 11 years ago because he got stoned, changed his ...
Forbes

Microsoft Says Edge Password Security Vulnerability Is ‘By Design’—Is It Time To Switch To Chrome?

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. This voice experience is generated by AI. Learn more. This ...
Decrypt

Bitcoin Owner Claims Claude AI Cracked Lost Wallet Password, Netting $400K in BTC

An X user claimed Anthropic’s Claude AI helped recover access to a Bitcoin wallet holding 5 BTC worth roughly $400,000. The ...
Computerworld

Edge browser leaves passwords exposed in plain text, says researcher

A Norwegian researcher has identified an issue with Microsoft Edge’s Password Manager that could be a serious concern for businesses. Tom Jøran Sønstebyseter Rønning found that passwords are being ...