Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.