The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...

I asked ChatGPT to help me learn coding in a 12-Sunday upskilling plan: AI gives me ...

I am a software engineer. But, there is one thing still missing from my profile: coding. I asked ChatGPT to prepare a ...
Visual Studio Magazine

Slammed by Copilot Usage-Based Billing on Day 1, Facing $180 Bill for June

A journalist using GitHub Copilot Pro details how a broken editorial workflow on day one of usage-based billing led to runaway token consumption, a projected $180 monthly bill, and practical tactics ...
电子工程专辑

给智能网卡装上操作系统:100Gbps TOE/RDMA线速背后的开源FPGA平台

一个来自苏黎世联邦理工的开源项目,让 FPGA 网卡开发从"刀耕火种"迈向"现代文明"。5篇CCF-A顶会加持,这可能是目前最强的开源FPGA SmartNIC平台。 先讲一个故事 假设你是一个程序员,想写一个 Web 服务。 你打开电脑,启动 VS Code,pip install flask,写几行代码 ...
51CTO

Claude Code Hooks 完全指南:事件机制、决策系统与插件实战

Hooks 是 Claude Code 给出的另一种答案。Hook 不是另一种 prompt,也不是另一种注入上下文的方式。它是一种运行在 Claude Code 执行流程内部的可编程控制机制。 深入解析 Claude Code 的 Hooks 系统,包括事件系统、合并与决策机制、不同层级的 Hooks,以及真实插件中的 ...
The Next Web

Microsoft’s quiet Claude Code retreat and the real cost of enterprise AI

In December of last year, Microsoft told thousands of its engineers, product managers and designers that they could use Claude Code, Anthropic’s command-line coding agent, on the company dime. By ...
GitHub

LM Studio Python SDK

The base component of the LM Studio SDK is the (synchronous) Client. This should be created once and used to manage the underlying websocket connections to the LM Studio instance. However, a top level ...
Wired

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

A so-called software supply chain attack, in which hackers corrupt a legitimate piece of software to hide their own malicious code, was once a relatively rare event but one that haunted the ...
SiliconANGLE

GitHub confirms breach of 3,800 internal repos after employee installs poisoned VS Code ...

Hackers exfiltrated roughly 3,800 of GitHub Inc.’s internal code repositories after one of its employees installed a poisoned Visual Studio Code extension, the Microsoft Corp.-owned developer platform ...
VentureBeat

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply ...

GitHub confirmed on May 20 that a poisoned VS Code extension installed on an employee’s device gave attackers access to roughly 3,800 internal repositories at the Microsoft-owned code storage and ...
Bleeping Computer

GitHub investigates internal repositories breach claimed by TeamPCP

Update May 20, 04:17 EDT: GitHub has now confirmed the breach of ~3,800 internal repositories after an employee installed a malicious VS Code extension. GitHub is investigating a breach of its ...
The Hacker News

GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

GitHub on Tuesday said it's investigating unauthorized access to its internal repositories after the notorious threat actor known as TeamPCP listed the platform's source code and internal ...