Spiceworks on MSN

Did AI write the worm that breached GitHub’s own house?

A single developer. One poisoned extension. Five supply chain surfaces compromised in 48 hours. And a threat group claiming ...
CoinJournal

TrapDoor attack targets crypto wallets, AWS keys and GitHub tokens

A coordinated malware campaign known as TrapDoor has hit software ecosystems widely used by crypto and blockchain developers.

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply ...

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP ...
The New York Times

Canvas Online Learning Platform Shut Down for Hours After Cyberattack

Most users regained access to the platform hours after a hacking group said it had attacked Canvas’s parent company and breached 275 million people’s data. By Hannah Ziegler Canvas, a platform used by ...
The Verge

Attack of the killer script kiddies

Last August, some of the best cybersecurity teams in the business gathered in Las Vegas to demonstrate the strength of their AI bug-finding systems at DARPA’s Artificial Intelligence Cyber Challenge ...
Government Technology

A History of Global Hacking — and Where It’s Going Next

In the midst of recent battles with Iran and their global partners, U.S. public- and private-sector organizations are also battling to secure critical infrastructure in a time of war. Federal agencies ...
Wired

Anthropic’s Mythos Will Force a Cybersecurity Reckoning—Just Not the One You Think

Anthropic said this week that the debut of its new Claude Mythos Preview model marks a critical juncture in the evolution of cybersecurity, representing an unprecedented existential threat to existing ...
Reuters

Iranian hackers' targeting of US critical infrastructure has escalated since start of war ...

April 7 (Reuters) - Iranian hacking campaigns targeting equipment used across multiple U.S. critical infrastructure sectors are escalating in response to hostilities, U.S. cybersecurity, law ...
TechCrunch

A major hacking tool has leaked online, putting millions of iPhones at risk. Here’s what ...

Security researchers have uncovered a series of cyberattacks targeting Apple customers across the world. The tools used in these hacking campaigns have been dubbed Coruna and DarkSword, and they have ...
Bleeping Computer

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of ...
cybermagazine

HP Wolf Security: How Vibe Hacking Overwhelms Legacy Defence

HP Wolf Security reveals how the surge of AI‑assisted malware, fake installers and macro‑based attacks are overwhelming traditional cybersecurity defences Just as AI gave the world vibe coding, bad ...
USA Today

Iran-based group claims cyberattack on medical device maker Stryker

An Iranian-linked hacking group on Wednesday, March 11, claimed responsibility for a destructive cyberattack on U.S.-based medical device and services provider Stryker, according to messages posted to ...