7 Days: Humans flying near the moon, Gmail address change, and Instagram's paid version7 Days: Humans flying near the moon, Gmail address change, and Instagram'…

Our '7 Days' weekly tech roundup brings the juiciest announcements. Read about humans flying near the moon, Netflix refunding ...
Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
Ecommerce Fastlane

Your Store Now Has Two Customers: The Shift Every Shopify Merchant Needs to Understand

Your store has a new customer. It doesn't have eyes. It doesn't feel urgency from a countdown timer. It evaluates your data ...

Techie Tonic: Two CISOs warn Axios breach changes supply chain trust model

Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...

MCP, A2A, NLWeb, And AGENTS.md: The Standards Powering The Agentic Web

The next phase of the web depends on shared AI standards, and these four protocols are quickly becoming the foundation ...
Cybernews

Axios hack put millions at risk: full story of how North Korean hackers pulled it off

A sophisticated social engineering attack, disguised as a Microsoft Teams meeting, tricked the Axios lead maintainer into ...
Chiang Rai Times

Google Launches Gemma 4: Open Models from Gemini 3

Google dropped Gemma 4 on April 2, 2026, and it's a game-changer for anyone building AI. These open models pull smarts straight from Gemini 3, Google's top ...

Researchers discover OpenAI Codex vulnerability involving Unicode characters

Hackers can steal your GitHub tokens through OpenAI’s Codex using nothing more than a sneaky branch name ...
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...
The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.
CMSWire

Meet EmDash, the Cloudflare CMS and WordPress 'Spiritual Successor'

Cloudflare created an open-source CMS it calls a "spiritual successor to WordPress" — but WordPress is having none of it.

Datris.ai Launches the First Data Platform Built Around MCP as Open Source

Open-source platform with 30+ MCP tools lets AI agents autonomously create pipelines, query databases, search vector ...