Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

A Brazilian Startup Is Betting on AI to Fight Crime. Critics See a Surveillance State

Brazilian startup Gabriel has residents paying to mount AI cameras outside their homes while police get the footage for free.
XDA Developers on MSN

I replaced my $100/year RSS reader with a free GitHub Pages aggregator

This open-source tool turns your RSS feeds into a static website hosted free on GitHub Pages ...

Exclusive: Chainguard extends Repository scanning and policies to Java, Python and containers

Secure software supply chain solution provider Chainguard Inc. today expanded its Chainguard Repository product with malware ...

Complete text of carbonised Herculaneum scroll unlocked for first time

Researchers using artificial intelligence and advanced imaging said on Thursday they had achieved the first complete reading ...
The Tech Edvocate

How to check if port is open

Spread the love“`html In the world of network security, knowing how to check if a port is open is crucial. Ports act as gateways for data traffic, and an open port can signal either authorized ...
The Hacker News

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

ThreatsDay Bulletin covers AI abuse, poisoned packages, phishing, macOS attacks, SD-WAN flaws, scams, and supply-chain ...
Western News

Western research could expand remote access to care for thumb arthritis

Western researchers are developing processes to help people with thumb arthritis access pain-relieving 3D-printed splints no matter where they live ...

How scammers use scraped New York Times content to trick security scanners

Researchers uncovered a global phishing network using Google Cloud redirects and copied news content across thousands of ...
Metro

UK’s most tattooed man Bodyart admits he is ‘petrified’ of needles

Britain’s most tattooed man has revealed he is ‘petrified’ of needles despite spending 1,600 hours being injected with ink. King of Ink Land King Body Art The Extreme Ink-Ite, better known as Bodyart, ...
The Hacker News

⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and More

Monday again. The weekend was meant to be quiet. It wasn't. Last week had poisoned packages, a broken AI helper, and a worm tearing through repos. The ugly part: basic tricks still worked. A chatbot ...