heise online

FortiClient EMS: Critical code-injection vulnerability is being exploited

A zero-day vulnerability exists in FortiClient EMS, which attackers are already exploiting in the wild. This allows them to inject and execute malicious code without prior authentication. Fortinet ...
heise online

Claude Code unintentionally open source: Source map reveals all

The source code for Anthropic's CLI tool Claude Code was apparently unintentionally made publicly accessible on March 31, 2026. According to consistent reports, the trigger was a co-published source ...
Bleeping Computer

AppsFlyer Web SDK hijacked to spread crypto-stealing JavaScript code

The AppsFlyer Web SDK was temporarily hijacked this week with malicious code used to steal cryptocurrency in a supply-chain attack. The payload can intercept cryptocurrency wallet addresses entered on ...
AOL

Discord distances itself from Peter Thiel–backed verification software after its code was found on a Google Cloud endpoint

Communication platform Discord is under fire after an identity verification software it used, Persona Identities, was found to have front-end code accessible on the open internet. Nearly 2,500 ...
usa.inquirer

8 best online JavaScript compilers for practice (free and fast)

JavaScript is the foundation of the modern web. From simple button clicks to complex web applications, almost everything interactive you see online runs on JavaScript. Whether you are a beginner ...
Hosted on MSN

Discord cuts ties with Peter Thiel-backed verification software after its code was found tied to US surveillance efforts

Communication platform Discord is under fire after its identity verification software, Persona Identities, was found to have front-end code accessible on the open internet and on government servers.
Yahoo

Discord distances itself from Peter Thiel–backed verification software after its code was found on a Google Cloud endpoint

Add Yahoo as a preferred source to see more of our stories on Google. Persona, partially funded by Peter Thiel’s venture firm Founders Fund, continues to provide age verification services for OpenAI, ...
Interesting Engineering

Hackers uncover the most alarming frontend leak in Discord’s age verification data

A newly uncovered flaw in Discord’s age verification rollout has added fresh pressure to the company’s 2026 compliance plans. Security researchers recently found that frontend components tied to ...
The New York Times

What Do A.I. Chatbots Discuss Among Themselves? We Sent One to Find Out.

We interviewed our bot about what it learned on Moltbook, the A.I.-only social network. The proof isn’t the karma spike; it’s whether the persona earns you a seat in the rooms your work needs. The ...
Bleeping Computer

What 5 Million Apps Revealed About Secrets in JavaScript

Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder’s research team built a new secrets detection method and scanned 5 ...
Ars Technica

Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name

Following additional review, Ars has determined that the story “After a routine code rejection, an AI agent published a hit piece on someone by name,” did not meet our standards. Ars Technica has ...
Fast Company

An AI agent just tried to shame a software engineer after he rejected its code

Sign of the times: An AI agent autonomously wrote and published a personalized attack article against an open-source software maintainer after he rejected its code contribution. It might be the first ...