The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
The Hacker News

Microsoft Warns Python Infostealers Target macOS via Fake Ads and Installers

Python infostealers are spreading from Windows to macOS via Google Ads, ClickFix lures, and fake installers to steal credentials and financial data.
InfoWorld

Deno Sandbox launched for running AI-generated code

Deno Sandbox works in tandem with Deno Deploy—now in GA—to secure workloads where code must be generated, evaluated, or ...
Cryptopolitan

dYdX targeted as malicious packages empty its user wallets

Researchers have revealed that bad actors are targeting dYdX and using malicious packages to empty its user wallets.

Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...

New Research from UpGuard: 1 in 5 Developers Grant AI Vibe Coding Tools Unrestricted Workstation Access

UpGuard, a leader in cybersecurity and risk management, released new research highlighting a critical security vulnerability within developer workflows. UpGuard's analysis of more than 18,000 AI agent ...

How recruitment fraud turned cloud IAM into a $2 billion attack surface

Adversaries weaponized recruitment fraud to steal cloud credentials, pivot through IAM misconfigurations, and reach AI ...
Le Lézard

Azul 2026 State of Java Survey & Report: 62% of Enterprises Now Leverage Java to Power AI Functionality, 41% Rely on High-Performance Java Platforms to Reduce Cloud Compute Costs

Azul, the only company 100% focused on Java, today announced the results of its 2026 State of Java Survey & Report. The annual study, based on responses from more than 2,000 Java professionals ...
eWeek

GPT-5.3-Codex: OpenAI Unveils a 25% Faster AI Model That Goes Beyond Coding

OpenAI’s GPT-5.3-Codex expands Codex into a full agentic system, delivering faster performance, top benchmarks, and advanced cybersecurity capabilities.
eWeek

Drama Alert: Anthropic Just Dropped a Super Bowl Attack Ad on OpenAI

Anthropic mocks OpenAI’s ad plans with a Super Bowl campaign, sparking a public feud over whether AI should be ad-supported or ad-free.
The Fabricator

How a small fabrication shop built its own ERP with AI

He picked up his phone and showed an app, dubbed Cogbill ERP, which today helps the small job shop track orders and organize ...