The Hacker News

Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...
eWeek

This AI Agent Is Quietly Leaving OpenClaw in the Dust

Hermes Agent’s latest release shows how AI agents are evolving from assistants into self-improving tools that learn, build, ...

Florida cop's murder sparks plan. Burmese python hunt winner | Opinion

Vero Beach man has idea for swift justice after shooting of Indian River County sheriff's deputy. TCPalm awards show ...
Security Boulevard

How to Connect Custom AI Agents with Slack

Whether you want simple fire-and-forget alerts or full two-way control, here's how to securely wire your AI agent into Slack.
Infosecurity Magazine

Malicious Hugging Face Repository Typosquats OpenAI

Security researchers have uncovered covert infostealer malware hidden in one of the top-ranking repositories on Hugging Face, ...
GovInfoSecurity

AI-Built Zero-Day Nearly Powered Mass Attack

A cybercriminal group came close to launching a mass attack earlier this year, armed with a software exploit that an AI model ...

Google reports first instance of hackers using AI to discover zero-day vulnerabilities

GTIG spotted threat actors using AI to develop a zero-day vulnerability exploit that could have been abused at scale.
cryptopolitan

Google catches first zero-day exploit built with AI assistance

Google found the first known zero-day exploit it believes was built using AI. The exploit targets two-factor authentication (2FA) on an open-source admin tool. State sponsored hackers from China and ...
SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...