Hackaday

This Week In Security: Docker Auth, Windows Tools, And A Very Full Patch Tuesday

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...

Microsoft closes book on rogue Windows Server 2025 upgrades

As far as Microsoft was concerned, the issue was "mitigated" shortly after being reported, but it has taken the company well ...
Cybernews

Hackers dodging security tools by dropping secret QEMU virtual machines inside Windows

Hackers are dodging Windows security tools by running secret Linux virtual machines with QEMU, an open-source virtualizer.
InfoWorld

Tap into the AI APIs of Google Chrome and Microsoft Edge

The Chrome and Edge browsers have built-in APIs for language detection, translation, summarization, and more, using locally ...

France is ditching Windows for digital sovereignty - and its new Linux stack is taking shape

Officially, we don't know what France's forthcoming Linux desktop will look like, but this is what my sources and experience ...
Security Boulevard

This fake Windows support website delivers password-stealing malware

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.
The Hacker News

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...
XDA Developers on MSN

I built a clipboard server on the Arduino Uno Q, and it replaced a workflow I didn't realize I hated

It's a solved problem, but I actually prefer a simple web UI.

How to self-host your OpenClaw environment on a VPS server

Security is your responsibility when you self-host, so it's worth sorting a few things before you go live. Keep OpenClaw's gateway port (18789) off the public internet and route external traffic ...