Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
The Week

'Always-on agent' and AI pet 'Buddy': Anthropic’s Claude source code leak reveals hidden features

Anthropic's accidental leak has exposed Claude AI's internal code, revealing several unreleased features like Buddy, KAIROS ...
Cyber Daily

High alert! ACSC warns of hackers targeting online code repositories

Once trusted code repositories are being turned into malicious delivery systems to harvest credentials and deploy malware – ...
The Hacker NewsOpinion

Block the Prompt, Not the Work: The End of "Doctor No"

AI extensions after DeepSeek block at U.S. law firm, routing traffic to China servers, exposing compliance risk.
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...
WLKY

Shelter-in-place still in effect Thursday. Check here for alerts, resources.

SHORTAGE, OR ANYTHING LIKE THAT, BUT THEY WILL CONTINUE TO GATHER FACTS SO WE CAN FIGURE OUT EXACTLY WHAT CAUSED THIS DEADLY UPS PLANE CRASH. FOR NOW, WE’RE GOING TO SEND IT OVER TO METRO HALL. SO ...
The Hacker News

⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More

Active exploits, nation-state campaigns, fresh arrests, and critical CVEs — this week's cybersecurity recap has it all.