The Hacker News

ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories

SMS blasters, npm supply chain hits, and unpatched Windows flaws. Stay ahead of new phishing kits and exposed servers.
The Hacker News

Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign

Bitwarden CLI, the command-line interface for the password manager Bitwarden, has reportedly been compromised as part of a newly discovered and ongoing Checkmarx supply chain campaign, according to ...

Microsoft’s Patch Tuesday release for April is a whopper

Nearly every major product family needs immediate patching, from Windows to Office to Microsoft Edge, SQL Server, and even Microsoft Developer Tools.
GitHub

Git remote helper for rclone-supported services

Visit the rclone website and follow the instructions for installation of rclone, and configuration of access to the desired service(s). git-remote-rclone can be configured to get git to prune the repo ...
Bleeping Computer

Betterleaks, a new open-source secrets scanner to replace Gitleaks

A new open-source tool called Betterleaks can scan directories, files, and git repositories and identify valid secrets using default or customized rules. Secret scanners are specialized utilities that ...
TechSpot

After GitHub outages, OpenAI begins building a rival code repository

Rumor mill: OpenAI is reportedly developing a code-hosting platform designed to compete with GitHub, which is owned by Microsoft. According to The Information, the project is still in its early stages ...
The Repository

Akii Launches Developer-First API to Power AI Visibility Infrastructure for Growth Teams ...

DUBAI, DE, UNITED STATES, February 23, 2026 /EINPresswire.com/ — Akii, the AI Search Intelligence Platform, today announced the launch of the Akii API, a developer ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

Microsoft Defender Experts identified a coordinated developer-targeting campaign delivered through malicious repositories disguised as legitimate Next.js projects and technical assessment materials.
GitHub

Mobile git client for syncing a repository between remote and a local directory

GitSync is a cross-platform git client for Android and iOS that aims to simplify the process of syncing a folder between a git remote and a local directory. It works in the background to keep your ...
CoinTelegraph

Moonwell hit by $1.78M exploit as AI vibe coding debate reaches DeFi

The exploit saw the Moonwell protocol exploited for $1.78 million after cbETH was mispriced at $1.12 instead of about $2,200, intensifying debate around AI-co-authored smart contracts. Moonwell, a ...
Bleeping Computer

Target's dev server offline after hackers claim to steal source code

Update, Jan 13th, 2026: Multiple Target employees have now confirmed in our follow-up report the authenticity of leaked source code sample set and shared internal announcements regarding an access ...