Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

AI finds critical ImageMagick vulnerabilities in default configurations

An AI pentesting tool has discovered critical vulnerabilities in default ImageMagick configurations. Workarounds offer ...

Security study finds thousands of API credentials exposed on the web for years

Researchers scan 10 million websites and uncover thousands of exposed API keys quietly granting access to cloud systems and ...
PCQuest on MSN

Chrome’s fourth zero-day of 2026 reveals a bigger browser security problem

Google’s latest emergency Chrome patch is not just another routine security update. It fixes CVE-2026-5281, an actively exploited zero-day in Dawn, the Chromium project’s implementation of WebGPU.
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...

Quadruple amputee cornhole player acted in self-defense when shooting car passenger, lawyer says

A Maryland judge has denied bail to a quadruple amputee professional cornhole player accused of fatally shooting a passenger ...

New car models and rising gas prices have more drivers considering EVs

Online searches for EVs and insurance quotes jump as Chinese EV maker BYD prepares to enter domestic market and Ottaqa ...