The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...

North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware

For those unfamiliar with Operation Dream Job, it is an ongoing campaign created by North Korean state-sponsored hackers.

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...

Open source registries don't have enough money to implement basic security

Free beer is great. Securing the keg costs money fosdem 2026 Open source registries are in financial peril, a co-founder of ...

An AI agent just tried to shame a software engineer after he rejected its code

When a Matplotlib volunteer declined its pull request, the bot published a personal attack. Sign of the times: An AI agent ...

Microsoft February 2026 Patch Tuesday fixes 6 zero-days, 58 flaws

Today is Microsoft' 2026 Patch Tuesday with security updates for 58 flaws, including 6 actively exploited and three publicly ...

OpenClaw: What it is and how to create your own autonomous AI agent.

Understand how this artificial intelligence is revolutionizing the concept of what an autonomous agent can do (and what risks ...
Security Boulevard

Agentic AI Security Starter Kit: Where Autonomous Systems Fail and How to Defend Against It

Many teams are approaching agentic AI with a mixture of interest and unease. Senior leaders see clear potential for efficiency and scale. Builders see an opportunity to remove friction from repetitive ...
The Hacker News

SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits

Researchers uncover SSHStalker, an IRC botnet exploiting legacy Linux flaws and SSH servers to build persistent covert access.

How newsroom tech shapes the stories we read online

A tech reporter turns an analytical lens on the digital tools that shape how a journalist's work is eventually seen online ...
XDA Developers on MSN

4 boring tasks I automate to get back hours every week

There's a lot you can automate.

Quesma Releases OTelBench: Independent Benchmark Reveals Frontier LLMs Struggle with Real-World SRE Tasks

New benchmark shows top LLMs achieve only 29% pass rate on OpenTelemetry instrumentation, exposing the gap between ...