SecurityWeek

Bitwarden NPM Package Hit in Supply Chain Attack

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

Windows 11 now shows if your Secure Boot certificates are ready for June

Windows 11's April update made it easy to check your Secure Boot certificate status ahead of the June 2026 expiration ...

CVSS scored these two Palo Alto CVEs as manageable. Chained, they gave attackers root access to 13,000 devices.

CVSS vulnerability triage missed a chained Palo Alto attack that hit 13,000 devices. Five failure classes and the fixes ...
Hosted on MSN

Microsoft patches 165 flaws, adds Secure Boot alerts

Microsoft’s April 2026 security update fixes 165 vulnerabilities across Windows, Office, and other products, including one actively exploited SharePoint flaw. The update also introduces a Windows 11 ...

Bitwarden Confirms Compromise—Here Are The Facts For 10 Million Users

Bitwarden has confirmed a serious security incident in which a compromised product was made public. Here's why most users ...

Microsoft to roll out Entra passkeys on Windows in late April

Microsoft will roll out passkey support for phishing-resistant passwordless authentication to Microsoft Entra‑protected ...

New ‘Pack2TheRoot’ flaw gives hackers root Linux access

A new vulnerability dubbed Pack2TheRoot could be exploited in the PackageKit daemon to allow local Linux users to install or ...