The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...

VS Code: Python Environments Extension generally available

The new extension for Visual Studio Code aims to end the previous fragmentation and ensure a uniform workflow with Python environments.

Open source registries don't have enough money to implement basic security

Free beer is great. Securing the keg costs money fosdem 2026 Open source registries are in financial peril, a co-founder of ...
Security Boulevard

Hackers Use LLM to Create React2Shell Malware, the Latest Example of AI-Generated Threat

Darktrace researchers say hackers used AI and LLMs to create malware to exploit the React2Shell vulnerability to mine cryptocurrency. It's the latest example of bad actor's using AI to create ...
TMCnet

Zyphra Releases ZUNA - BCI Foundation Model Advancing Towards Thought-to-Text

Zyphra today announced the release of ZUNA, the company's first foundation model trained on brain data. ZUNA significantly ...

ASD releases Azul open-source malware analysis tool

Sample files for Azul are kept in a Simple Storage Service (S3) compatible binary large object (blob) store, and processed ...
The Hacker News

DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies

North Korean IT operatives use stolen LinkedIn accounts, fake hiring flows, and malware to secure remote jobs, steal data, ...
Make Tech Easier

This Tool Lets Me Open Spreadsheets In The Terminal, And It’s More Useful Than It Sounds

Xleak is a simple terminal tool that lets you open and inspect Excel files instantly, without ever leaving your command line.
HealthcareInfoSecurity

AI-Generated Malware Exploits React2Shell for Tiny Profit

Security researchers detected artificial intelligence-generated malware exploiting the React2Shell vulnerability, allowing ...

Gigasoft Publishes 2026 WPF Chart Comparison: ProEssentials, SciChart, LightningChart, Syncfusion, DevExpress

Gigasoft releases ProEssentials v10 with GPU compute shaders and publishes six-part WPF chart library comparison for ...
Electronics For You

Time Lapse Timed Photography On MaixCam Board

Everything changes with time. Some changes happen so rapidly — like 7 frames or more per second — that we perceive them as ...