Morning Overview on MSN

The SolarWinds flaw lets an unauthenticated attacker crash a file server with a single booby-trapped request

Organizations running SolarWinds Serv-U file-transfer software face an immediate denial-of-service risk after the disclosure of CVE-2026-28318, a flaw that lets an unauthenticated attacker crash a ...
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
MUO on MSN

I stopped using sketchy upload sites and built my own private file drop in an afternoon

Pingvin Share X gave me a way to send and receive files without using dodgy upload pages ...
The Hacker News

New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing

FROST uses JavaScript and OPFS SSD timing to identify websites at 88.95% F1, exposing cross-browser privacy leaks.