Fake Minecraft Mod Malware Infects Over 116,000 Players, Raising Alarms Across the Community

A fake Minecraft mod malware campaign has infected more than 116,000 players, stealing accounts, passwords, and even webcam ...
CSO Online

Hugging Face Transformers RCE flaw enables stealthy compromise via AI model configs

With over 2.2 billion installs, the flawed Python package offers attackers a huge blast radius, including silent access to ...
CNET

Russia's Military Hackers Targeted Home Routers Across 23 States. Here's What to Do

Federal agencies disrupted the attack but were direct about what comes next. These five router security steps are the ...
The Hacker News

GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

GitHub on Tuesday said it's investigating unauthorized access to its internal repositories after the notorious threat actor known as TeamPCP listed the platform's source code and internal ...
Wall Street Journal

Apple’s Security Has Been Tough to Crack. Mythos Helped Find a Way In.

Security researchers say they have discovered a new way of circumventing Apple’sAAPL1.97%increase; green up pointing triangle state-of-the art security technology, using techniques they discovered ...
TechCrunch

OpenAI says hackers stole some data after latest code security issue

Earlier this week, hackers hijacked several open source projects used by dozens of companies and pushed updates designed to spread malware. This is the latest in a string of recent supply-chain ...
Wired

Your iPhone Gets Stolen. Then the Hacking Begins

A bustling underground ecosystem is providing criminals with the tools to unlock iPhones—and wage phishing attacks against their contacts to access bank accounts and more. “Reselling is a hundred ...
Stark Insider

Quick Tip: How to Get Claude Code to Run Autonomously for Hours

Anchor Claude Code in real server time and the AI coding agent will keep shipping code for hours. The prompt on screen is the exact instruction that turned a quick errand into a 39-minute autonomous ...
CNET

Canvas Hack Aftermath: Congress Wants Instructure to Answer Questions

A hacker group stole data from more than 9,000 schools using an exploit in Instructure's service. Now the House Homeland Security Committee is getting involved. Tyler is a writer for CNET covering ...
Ars Technica

Anthropic blames dystopian sci-fi for training AI models to act “evil”

After a model’s initial training on a large corpus of mostly Internet-derived data, Anthropic follows a post-training process intended to nudge the final model toward being “helpful, honest, and ...
New York Post

Pro-Iran hacking group targets California tech company in flurry of attacks

San Jose-based eBay was hammered by a massive cyberattack allegedly carried out by a pro-Iran hacking group that’s now threatening some of world’s biggest tech companies. The shadowy “Islamic Cyber ...
Dark Reading

LatAm Vibe Hackers Generate Custom Hacking Tools on the Fly

Threat actors in Latin America have begun to use AI agents to facilitate their entire attack chains, from assisting with initial access to generating penetration tools on the fly — and organizations ...