Vite team boasts 10-30x faster builds with Rust-powered Rolldown

The Vite team claims that Rolldown is "10-30x faster than Rollup," and matches the performance of esbuild, which is also ...
XDA Developers on MSN

Google kept featuring this Chrome extension for months after it turned malicious

How can an extension change hands with no oversight?

Gemini panel in Chrome left the doors open for hackers, and you must update ASAP

Researchers discovered a Chrome vulnerability that allowed malicious extensions to hijack the Gemini AI panel and access sensitive system resources.
InfoQ

AWS Launches Managed Openclaw on Lightsail amid Critical Security Vulnerabilities

AWS launched managed OpenClaw on Lightsail for AI agent deployment while security concerns mount. The 250k-star GitHub project is affected by CVE-2026-25253, which enables one-click RCE, with 17,500+ ...

AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
How-To Geek on MSN

8 open-source tools that secretly power the world

These heroes of open source software are hard at work behind the scenes without you even realizing it.
The Hacker News

UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

UNC6426 used stolen GitHub tokens from the 2025 nx npm breach to gain AWS admin access in under 72 hours, enabling data theft and cloud destruction.