Breaking news and updates from the world of technology.
A Homeland Security committee wants Instructure to explain two Canvas intrusions tied to ShinyHunters after student data theft and exam-week disruptions across US schools.
A new malvertising campaign is targeting Mac users with fake download flows that abuse Google ads and shared Claude.ai chats. The attack shows how quickly trusted AI and search surfaces can be repurposed into malware delivery channels.
A new solid-state battery design achieves an unprecedented 800-mile driving range for electric vehicles, marking a significant step toward eliminating range anxiety. The breakthrough addresses key challenges in energy density and safety without compromising longevity.
A critical prompt injection vulnerability has been identified in AI assistants deployed across healthcare and finance, potentially allowing attackers to bypass safeguards and manipulate sensitive data or system outputs. Immediate mitigation measures are urged to prevent exploitation that could compromise patient privacy and financial security.
Nintendo has announced its first new Star Fox game in a decade, with upgraded visuals, online dogfights, mouse controls, and a June 25 release on Switch 2.
A newly disclosed vm2 vulnerability can let sandboxed JavaScript escape to the host system under specific Node.js 25 conditions, and proof-of-concept exploit code is already public.
Disc Soft says attackers compromised DAEMON Tools Lite installers in its build environment, and users who installed the free version since April 8 should remove it and scan their systems.
Palo Alto Networks says attackers are already exploiting CVE-2026-0300, a critical PAN-OS flaw that can allow unauthenticated remote code execution on exposed firewalls.
Users who downloaded DAEMON Tools from the vendor’s official website between April 8 and early May may have received more than a legitimate disk-imaging utility. Security researchers say several official...
The FTC has moved to settle its long-running case against Kochava with an order that would stop the data broker from selling Americans' precise location data without explicit consumer consent and impose new compliance controls if the court approves it.
cPanel released an emergency update on April 29, 2026 to fix a critical authentication bypass flaw in cPanel and WHM, while Namecheap temporarily blocked ports 2083 and 2087 as a precaution.
GitHub says it fixed CVE-2026-3854 within hours after Wiz reported a git push vulnerability that could have exposed millions of private repositories and fully compromised vulnerable enterprise servers.