TidBITS

DarkSword Exploit Threatens iPhones Still Running iOS 18

Security researchers have discovered DarkSword, a sophisticated exploit chain targeting iOS 18.4 through 18.7.2. Unlike past spyware aimed at high-profile targets, DarkSword is being surreptitiously ...
New Scientist

Security credentials inadvertently leaked on thousands of websites

Researchers identified nearly 10,000 websites where API keys could be found, exposing details that could let attackers access ...

Down to the wire for Team Canada’s Einarson at world championship

The women's world curling championship got a lot more interesting for Team Canada's Kerri Einarson, late Thursday – and not ...
WinBuzzer

GhostClaw Fake OpenClaw Installer Steals macOS Dev Credentials

JFrog has uncovered GhostClaw, a fake OpenClaw npm package that stole Keychain passwords, cloud credentials, and crypto ...
CNET

I Get My Password Manager for Free. Here’s How You Can Get One That's Cheap or Free

The good news is you don’t need special access to use a solid password manager. Several services offer free plans, and others ...
Cyber DailyOpinion

Op-Ed: Information sharing of cyber threats vital to national security

Military strikes, cyber activity, and influence campaigns are now unfolding in parallel, with critical infrastructure ...

DarkSword iOS exploit chain adopted by multiple threat actors: Report

Lookout Threat Labs, and iVerify published coordinated research in March 2026 on DarkSword, a JavaScript-based full-chain ...

I tested NordVPN's free scam checker against a real threat in my inbox - here's how it did

Can an AI tool successfully detect not just standard scams, but those created with the same technology? I put NordVPN's new ...
Decrypt

OpenClaw Developers Lured in GitHub Phishing Campaign Targeting Crypto Wallets

The phishing campaign lures OpenClaw developers with fake $5,000 token airdrops, then drains wallets through a cloned site ...