New Scientist

Security credentials inadvertently leaked on thousands of websites

Researchers identified nearly 10,000 websites where API keys could be found, exposing details that could let attackers access ...
The Hacker News

WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites

WebRTC skimmer exploits PolyShell flaw since March 19, hitting 56.7% stores, enabling stealth data theft bypassing CSP.

US-Israel-Iran War: UN Chief Guterres Urges End to War, Warns on Strait of Hormuz Crisis

Trump said at a GOP fundraiser that Tehran wants a deal but fears admitting it, even as officials deny direct negotiations.
The Hacker News

GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data

GlassWorm uses Solana and Google Calendar dead drops to deliver RAT stealing browser data and crypto wallets, impacting ...
InfoQ中国 on MSN

微信龙虾只活2天:一次更新干崩全生态,OpenClaw 撞上 Vibe Coding 天花板

3月22日,微信官宣推出 ClawBot插件,支持接入 OpenClaw,用户扫码或复制命令即可将其接入微信。两天后,OpenClaw的一次更新就“杀掉”了这只微信龙虾。 OpenClaw 官方更新到了v2026.3.22,新版 OpenClaw ...
腾讯网

下一个 $50 mm ARR 的种子,或许就埋在小红书的笔记里

上海住了一年,香港又一年,期间组过不少投资人/项目的线下活动,但Hackathon一次没搞过。不是不想,是觉得Web3那个阶段搞黑客松多少有点悬浮——大家在真空里造永动机,Infra互抽,协议套娃,做出来的东西离普通人远得不着边际。你48小时速通一个 ...
爱范儿

微信龙虾插件上线72小时,就被OpenClaw一次更新干崩了

OpenClaw 现在可以说是 GitHub 上的顶流开源项目,几乎每天都有人在为他提交优化代码,而官方基本上也是保持在 2-3 天就会更新一个新的发布版本,每次都是大量的 fixes 代码修复、changes 变更,和 breakings 大改动。