The Hacker News

Cline CLI 2.3.0 Supply Chain Attack Installed OpenClaw on Developer Systems

Cline CLI 2.3.0 was published with a stolen npm token, installing OpenClaw in an 8-hour attack affecting ~4,000 downloads.
Live Bitcoin News

npm Worm Steals Crypto Keys, Targets 19 Packages

A self-replicating npm worm dubbed SANDWORM_MODE hits 19+ packages, harvesting private keys, BIP39 mnemonics, wallet files and LLM API keys from dev environments.

Study Finds Most AI Agents Skip or Lack Safety Disclosure Raising Transparency Concerns

Researchers found most leading AI agents do not publish detailed safety or risk assessments, raising transparency concerns.
Technobezz on MSN

Anthropic launches AI tool that hunts software vulnerabilities

Anthropic's new AI tool autonomously hunts and patches software vulnerabilities, disrupting the cybersecurity market and ...

Enkrypt AI Launches Skill Sentinel to Secure AI Coding Assistant Skills

Enkrypt AI introduces open-source protection for the AI development supply chain, securing coding assistant Skills ...

FBI warns ATM "jackpotting" attacks are soaring - here's what you need to know

Physically breaking into an ATM is getting more popular and the FBI is sounding the alarm.

Amazon: AI-assisted hacker breached 600 FortiGate firewalls in 5 weeks

Amazon is warning that a Russian-speaking hacker used multiple generative AI services as part of a campaign that breached more than 600 FortiGate firewalls across 55 countries in five weeks.