ClickUp Data Leak Exposes Enterprise Emails for Over a Year

A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security ...

LinkDaddy LLC Launches AI Verified to Solve SME Knowledge Graph Exclusion

AI Verified gives any registered business the machine-readable identity AI systems need to find and cite them — solving the ...
DataBreachToday

How AI Supply-Chain Monitor Spotted Unfolding Axios Attack

Elastic Security Labs quickly spotted the unfolding supply-chain attack that backdoored the popular JavaScript library Axios, ...

Google May Expand Unsupported Robots.txt Rules List

Google may expand its unsupported robots.txt rules list using HTTP Archive data and could broaden how it handles common ...
The Caledonian-Record

Sound Group Inc. Files 2025 Annual Report on Form 20-F

Sound Group Inc. (“Sound Group” or the “Company”) (NASDAQ: SOGP), a global AI-powered audio company, today announced that it filed its annual report ...
The Caledonian-Record

17 Education & Technology Group Inc. Files Its Annual Report on Form 20-F

BEIJING, April 29, 2026 (GLOBE NEWSWIRE) -- (NASDAQ: YQ) (“17EdTech” or the “Company”), a leading education technology company in China, today announced that it ...

Nginx 1.30 changes default proxy behavior

ECH encrypts the TLS handshake, backends speak HTTP/2, and Multipath TCP uses multiple network paths in parallel.
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.

From XSS to RCE: How to hijack a DotNetNuke server via a single script injection

Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...

Aikido Security Launches Endpoint Protection for Developer Devices as Software Supply Chain Attacks Hit Unprecedented Scale

Aikido Security today launched Aikido Endpoint, a lightweight security agent that protects developer devices against software supply chain attacks by inspecting and blocking risky packages, IDE ...
InfoWorld

The best JavaScript certifications for getting hired

Earn these JavaScript certs to demonstrate mastery of the most in-demand skills for the world’s most-used programming ...

U.S.-Iran ceasefire holding for now, Hegseth says, as Trump looks to finalize deal

Hegseth said the ceasefire with Iran "certainly holds" for now after a naval clash between Iranian and U.S. forces and ...