Someone has publicly leaked an exploit kit that can hack millions of iPhones

Leaked "DarkSword" exploits published to GitHub allow hackers and cybercriminals to target iPhone users running old versions ...
TidBITS

DarkSword Exploit Threatens iPhones Still Running iOS 18

Security researchers have discovered DarkSword, a sophisticated exploit chain targeting iOS 18.4 through 18.7.2. Unlike past spyware aimed at high-profile targets, DarkSword is being surreptitiously ...
New Scientist

Security credentials inadvertently leaked on thousands of websites

Researchers identified nearly 10,000 websites where API keys could be found, exposing details that could let attackers access ...
PCMag

Stop Using Passwords. Here's Why You Should Switch to Passkeys ASAP

Passkeys offer far stronger security than traditional passwords—and may eventually replace them. We break down everything you ...
WinBuzzer

GhostClaw Fake OpenClaw Installer Steals macOS Dev Credentials

JFrog has uncovered GhostClaw, a fake OpenClaw npm package that stole Keychain passwords, cloud credentials, and crypto ...
CNET

I Get My Password Manager for Free. Here’s How You Can Get One That's Cheap or Free

The good news is you don’t need special access to use a solid password manager. Several services offer free plans, and others ...
Cyber DailyOpinion

Op-Ed: Information sharing of cyber threats vital to national security

Military strikes, cyber activity, and influence campaigns are now unfolding in parallel, with critical infrastructure ...

DarkSword iOS exploit chain adopted by multiple threat actors: Report

Lookout Threat Labs, and iVerify published coordinated research in March 2026 on DarkSword, a JavaScript-based full-chain ...
Cybernews

Threat actors linked to Russia target Ukrainian entities with new backdoor

The campaign, observed in February 2026, has been assessed to share overlaps with a prior campaign mounted by Laundry Bear, a ...
Bleeping Computer

Why Password Audits Miss the Accounts Attackers Actually Want

Password audits are a standard part of most security programs. They help organizations demonstrate compliance, reduce obvious risk, and confirm that basic controls are in place. However, in many cases ...