Crypto Guys Bought the Answer to the CIA’s Mysterious Kryptos Sculpture

They swear they haven’t peeked at the closely guarded secret and that they’ll keep the cryptographic competition going.
The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
The Next Web

Cipher Digital raises $810 million in junk bonds to build another Amazon data centre in Texas

Cipher Digital is selling $810M in high-yield bonds to fund its Stingray data centre in West Texas, leased to Amazon for 15 years, at a yield of 6.25%.
InfoWorld

Google Protocol Buffers flaw turns schemas into shells

Researchers at Cyera found six vulnerabilities in prtobuf.js, including a flaw that can turn attacker-controlled schema data ...
SecurityWeek

OWASP Incubator Project Helps Developers Find and Fix Vulnerable Dependencies in Seconds

CVE Lite CLI helps developers quickly identify and fix vulnerable npm dependencies during development, reducing delays and ...
Opinion
HackadayOpinion

This Week In Security: Messing With AI, 7Zip And Notepad++ Vulnerabilities, HTTP2 Bomb, And More

With the rise of AI coding assistants continuing apparently unabated, some project maintainers have begun striking back. Ars Technica reports on projects putting hostile directions into the ...