ClickUp Data Leak Exposes Enterprise Emails for Over a Year

A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security ...
CoinDesk

Wasabi Protocol drained of $4.5 million in apparent admin key compromise

The exploit used a playbook similar to Drift's $285 million breach earlier this month: a compromised deployer key with no ...
InfoQ

Microsoft's Russinovich and Hanselman Warn AI Is Hollowing Out the Junior Developer Pipeline

Microsoft's Russinovich and Hanselman argue in a CACM paper that agentic AI creates an "AI drag" on junior developers while ...
The Hacker News

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.