The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
InfoWorld

SAP npm package attack highlights risks in developer tools and CI/CD pipelines

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...
The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...
PC World

20 incredibly useful Windows keyboard shortcuts I use every day

As a long-time Windows geek, I’ve always loved and relied on keyboard shortcuts. They’re incredible! Like a collection of secret handshakes that can quickly perform useful tasks and dramatically speed ...
PC World

I tried Claude Design for half an hour. I’m already locked out for a week

PCWorld tested Anthropic’s new Claude Design AI tool, which creates web prototypes, app wireframes, and marketing materials from text prompts. The tool quickly produces impressive interactive web ...
The New York Times

A Bid to Use Force to Open Strait of Hormuz Hits Roadblocks at U.N. Security Council

Several permanent members of the Security Council opposed the resolution, drafted by Bahrain in coordination with its Gulf neighbors, officials said. By Farnaz Fassihi and Vivian Nereim Farnaz Fassihi ...