New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Google patches first Chrome zero-day exploited in attacks this year

Google has released emergency updates to fix a high-severity Chrome vulnerability exploited in zero-day attacks, marking the ...
The Hacker News

New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch Released

Google fixes actively exploited Chrome zero-day CVE-2026-2441, a high-severity CSS use-after-free flaw enabling sandboxed remote code execution.

North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware

Operation Dream Job is evolving once again, and now comes through malicious dependencies on bare-bones projects.
SecurityWeek

Google Patches First Actively Exploited Chrome Zero-Day of 2026

Google released an emergency Chrome update on Friday to patch a zero-day vulnerability that has been exploited in the wild.
Opinion
diginomicaOpinion

Enterprise hits and misses - AI forces a massive data rethink, Aneel Bhusri returns as Workday CEO, and the AI versus SaaS tension persists

This week - the enterprise has a newfound obsession with "quality data" - but are we on the wrong track for AI? Pega and HubSpot turn in strong earnings, but Wall Street's AI fever (dreams?) persist.