SaaS platforms lack comprehensive data protection, exposing organizations to data loss, compliance risks, and cyberthreats.
Get the latest international news and world events from around the world.
Critical Open VSX Registry Flaw Exposes Millions of Developers to Supply Chain Attacks
Cybersecurity researchers have disclosed a critical vulnerability in the Open VSX Registry (“open-vsx[.]org”) that, if successfully exploited, could have enabled attackers to take control of the entire Visual Studio Code extensions marketplace, posing a severe supply chain risk.
“This vulnerability provides attackers full control over the entire extensions marketplace, and in turn, full control over millions of developer machines,” Koi Security researcher Oren Yomtov said. “By exploiting a CI issue a malicious actor could publish malicious updates to every extension on Open VSX.”
Following responsible disclosure on May 4, 2025, multiple rounds of fixes were proposed by the maintainers, before a final patch was deployed on June 25.
New FileFix Method Emerges as a Threat Following 517% Rise in ClickFix Attacks
“The list of threats that ClickFix attacks lead to is growing by the day, including infostealers, ransomware, remote access trojans, cryptominers, post-exploitation tools, and even custom malware from nation-state-aligned threat actors,” Jiří Kropáč, Director of Threat Prevention Labs at ESET, said.
ClickFix has become a widely popular and deceptive method that employs bogus error messages or CAPTCHA verification checks to entice victims into copying and pasting a malicious script into either the Windows Run dialog or the Apple macOS Terminal app, and running it.
The Slovak cybersecurity company said the highest volume of ClickFix detections are concentrated around Japan, Peru, Poland, Spain, and Slovakia.
Microsoft could walk away from OpenAI talks
Huge deal wobbles as OpenAI pushes for profit pivot Software King of the World, Microsoft is ready to bin its negotiations with OpenAI as the ChatGPT outfit tries to morph into a fully for-profit company. According to the Financial Times, the software giant has thought about ditching the complex tal…
Kentucky invests $300,000 in space research to find cures for Alzheimer’s, Parkinson’s and multiple sclerosis
The National Stem Cell Foundation, which is based in Louisville, has been awarded a $3.1 million grant from NASA to continue research on brain cell behavior in space as a way to find treatments and cures for neurogenerative conditions, and Kentucky is investing $300,000 toward the project as part of a 10% match.
Kentucky’s portion was allocated in the 2024 legislative session in Senate Bill 1. The announcement was made Wednesday, March 26 at the Kentucky State Capitol.
Pointing to the space research Kentucky students have done at the Craft Academy for Excellence in Science and Mathematics and NASA’s presence at Morehead State University, Senate President Robert Stivers, R-Manchester, said it was easy for him and his colleagues to support this type of research in hopes of making Kentucky a hub for it.