Device code phishing attacks surge 37x as new kits spread online

Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more than 37 times this year.
WinBuzzer

Claude Cowork and Claude Code Can Now Control Your Windows Desktop

Anthropic has expanded Claude's desktop control to Windows in Cowork and Claude Code, adding a Dispatch feature that lets ...
Visual Studio Magazine

Hands On with OpenClaw Node for VS Code: Real Workflow, Real Friction

OpenClaw's Node for VS Code extension proved it can support a real local file-based workflow, but on Windows the experience still feels more like early infrastructure than finished tooling.
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

KushoAI Launches APIEval-20, the First Open Benchmark for AI API Test Generation

-- No existing benchmark measured whether AI agents can find real API bugs from a schema and payload alone -- 100+ downloads in first week by developers and contributors; freely available on ...

Jitterbit Achieves Best Enterprise ROI Across Entire Platform

Enterprise iPaaS: Recognized with the “Best Estimated ROI” badge, Jitterbit iPaaS enables an average time-to-go-live of 1.74 ...

Beyond paper permits: ToolKitX’s digital lockout tagout system redefines industrial safety

Replace paper LOTO permits with ToolkitX's digital lockout tagout system. Guided workflows, live dashboards, and tamper ...

Security study finds thousands of API credentials exposed on the web for years

Researchers scan 10 million websites and uncover thousands of exposed API keys quietly granting access to cloud systems and ...

Meta's new structured prompting technique makes LLMs significantly better at code review — boosting accuracy to 93% in some cases

This technique can be used out-of-the-box, requiring no model training or special packaging. It is code-execution free, which ...

Entire Claude Code CLI source code leaks thanks to exposed map file

The entire source code for Anthropic’s Claude Code command line interface application (not the models themselves) has been ...
Ministry of Testing

Two ways to use the “5 whys” method: Root cause of bugs and identifying continuous improvements

Apply the "5 Whys" technique to both technical debugging and organisational workflows to uncover deep-seated root causes and ...

1inch enables AI agents to access API suite, including swap execution, via MCP

ROAD TOWN, British Virgin Islands, March 30, 2026 /PRNewswire/ -- 1inch, the leading DeFi ecosystem, today announced that AI agents can now directly access its infrastructure via the 1inch MCP, ...