Android mental health apps with 14.7M installs filled with security flaws

Several mental health mobile apps with millions of downloads on Google Play contain security vulnerabilities that could expose users' sensitive medical information.

OpenClaw AI is going viral. Don’t install it

It lives on your devices, works 24/7, makes its own decisions, and has access to your most sensitive files. Think twice before setting OpenClaw loose on your system.
Le Lézard

Positive Phase 3 Data Demonstrate Potential for ENTYVIO® (vedolizumab) to Address Treatment Gap for Children and Adolescents with Moderate to Severe Ulcerative Colitis

Takeda (TSE:4502/NYSE:TAK) today announced positive data from the pivotal Phase 3 KEPLER trial, which demonstrated that ENTYVIO® (vedolizumab) can offer the possibility of clinical remission for ...
The Hacker News

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M ...
The Montana Standard

In the latest Epstein files are famous names and details about an earlier investigation

NEW YORK — Newly disclosed government files on Jeffrey Epstein offer more details about his interactions with the rich and famous after he served time for sex crimes in Florida, and on how much ...

Microsoft Just Patched a Major Security Vulnerability for This Popular Windows App

Users could be tricked into running arbitrary code, but the issue was patched last week.
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...
Opinion

KLEIN: Point Douglas resident unmasks the political games at Winnipeg City Hall

Governments love to talk about co-operation. It’s one of those words that sounds responsible, especially when a difficult decision is on the table. But too often, “co-operation” is just another way of ...
India West

Did Kash Patel’s FBI Redact Trump’s Name From Epstein Files?

WASHINGTON, DC – The Trump administration’s handling of Jeffrey Epstein-related documents has triggered backlash from MAGA supporters, as questions mount about whether key information — including ...
SecurityWeek

Recent RoundCube Webmail Vulnerability Exploited in Attacks

The US cybersecurity agency CISA on Friday warned of two RoundCube Webmail vulnerabilities being exploited in the wild. Prevalent within government and enterprise networks, RoundCube Webmail is a ...
Dark Reading

Supply Chain Attack Secretly Installs OpenClaw for Cline Users

The malicious version of Cline's npm package — 2.3.0 — was downloaded more than 4,000 times before it was removed.