Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

Patch Now: Chrome Flaw Under Active Attack, Google Confirms

Google patches 21 Chrome vulnerabilities, including an actively exploited zero-day flaw that could enable code execution and ...

Anthropic accidentally exposed Claude Code source, raising security concerns

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...

Google fixes fourth Chrome zero-day exploited in attacks in 2026

In 2025, Google fixed a total of eight zero-days exploited in the wild, many of which were discovered and reported by ...

Umpire loses track of count, leading to walk instead of strikeout for Astros’ Cam Smith vs. Red Sox

Plate umpire Mark Wegner acknowledged he lost track of the count during Cam Smith’s nine-pitch walk in the fifth inning of ...

The White House launched its own app with a glaring privacy issue

A new White House app promises direct access to the administration, but its data collection and app behavior raise some ...

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

An embarrassing ritual plagues the NBA. The solution is math.

Teams are deliberately tanking to game the draft. It doesn’t have to be this way.