The Hacker News

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...
techtimes

API Key Leak Exposes AWS, Stripe, OpenAI Credentials Across Thousands of Sites

A large-scale cybersecurity study has revealed a serious global web security issue involving exposed API credentials tied to major platforms, including Amazon Web Services, Stripe, and OpenAI. After ...
GitHub

AWS Credentials

Note: This feature is available in Lite, Enterprise, and Ultimate editions only. DBeaver integrates with AWS authentication to let you securely access AWS-based services and cloud databases using ...
GitHub

Amazon Chime SDK for JavaScript

The Amazon Chime SDK is a set of real-time communications components that developers can use to quickly add messaging, audio, video, and screen sharing capabilities to their web or mobile applications ...
The Hacker News

CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026

The addition of the three Apple vulnerabilities to the KEV catalog comes in the wake of reports from Google Threat Intelligence Group (GTIG), iVerify, and Lookout about an iOS exploit kit codenamed ...
Ventura County Star

Sentry Interactive’s SDK enables mass enrollment of PKOC credentials

Enterprises deploying mobile and physical access credentials will soon be able to enroll them at scale using open standards. PKOC credentials are designed to be non-proprietary, hardware-agnostic, and ...