Critical vulnerability in Ruby's standard library ERB:attackers can execute code

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...
The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.
The Lancet

Detection of young-onset type 2 diabetes using deep learning across primary and secondary care: a nationwide, retrospective cohort study

This study highlights the potential for using deep learning methods on longitudinal health data from both primary and ...
Pure Xbox

Xbox PC Project Might Have Solved How To Fix Hundreds Of 'Broken' Windows Games

The Xbox Collection Tracker project on GitHub highlights how Xbox PC games used to utilise "XBL2.0-formatted XSTS tokens" to ...
goskagit.com

Chainguard and Cursor Partner to Secure Agentic Coding with Trusted Open Source

Joint solution closes the software supply chain trust gap with secure-by-default artifacts for engineering teams building ...
Digital Production

Natsura 0.6 adds effectors and Nanite export for Houdini Foliage

Natsura update 0.6 adds modular effectors, Nanite assemblies, a revamped UI, opt in analytics, and Houdini 21 support.
TechLila

macOS Malware Statistics 2026: Hidden Threats

OS Malware Statistics reveal rising threats, key trends, and risks. Discover critical insights to protect your devices today.
Hackaday

This Week In Security: Docker Auth, Windows Tools, And A Very Full Patch Tuesday

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...

Rumour: Red Dead Redemption May Be Getting A Rubbish 'Code-In-A-Box' Release

Red Dead Redemption got a sweet Nintendo Switch 2 Edition back in December 2025, but according to a new rumour from Dealabs ...

iOS 26.4 No Longer Signed by Apple, Blocking Downgrades From iOS 26.4.1

Apple today stopped signing iOS 26.4, so iPhone users who have updated to iOS 26.4.1 are no longer able to downgrade to the ...

How to download and install older macOS versions on compatible Macs

If you've ever have to wipe the drive of a very old Mac, you know you need an old macOS to get it running again. Beyond ...