The Register on MSN

Fake 'interview' repos lure Next.js devs into running secret-stealing malware

Come for the coding test, stay for the C2 traffic Next.js developers are once again in the crosshairs as hackers seed ...
The Next Web

When malware learns to think

PromptSpy, discovered by ESET, is the first known Android malware to integrate generative AI into its execution flow.
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
InfoWorld

New npm worm hits CI pipelines and AI coding tools

Researchers warn malicious packages can harvest secrets, weaponize CI systems, and spread across projects while carrying a dormant wipe mechanism.
InfoWorld

Enterprise use of open source AI coding is changing the ROI calculation

Open source has always had issues, but the benefits outweighed the costs/risks. AI is not merely exponentially accelerating tasks, it is disproportionately increasing risks.
theregister

AI connector for Google Calendar makes convenient malware launchpad, researchers show

LayerX, a security company based in Tel Aviv, says it has identified a zero-click remote code execution vulnerability in Claude Desktop Extensions that can be triggered by processing a Google Calendar ...
Security Boulevard

Hackers Use LLM to Create React2Shell Malware, the Latest Example of AI-Generated Threat

A malware sample recently caught in security vendor Darktrace’s CloudyPots honeypot network was entirely generated by AI and built to exploit the widespread and maximum-security React2Shell ...
Infosecurity-magazine.com

VoidLink Malware Exhibits Multi-Cloud Capabilities and AI Code

A Linux-based command-and-control (C2) framework capable of long-term intrusion across cloud and enterprise environments has been further analyzed in new research. Known as VoidLink, the malware ...
GitHub

Claude Code Skills & Agents Factory

claude-code-skills-factory/ ├── README.md # This file ├── CLAUDE.md # Repository guidance ├── AGENTS.md # Codex CLI documentation (auto-generated) ├── CHANGELOG.md # Version history ├── .claude/ │ ├── ...
GitHub

affaan-m/everything-claude-code

The complete collection of Claude Code configs from an Anthropic hackathon winner. Production-ready agents, skills, hooks, commands, rules, and MCP configurations evolved over 10+ months of intensive ...
The Hacker News

DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

Threat hunters have disclosed details of a new, stealthy malware campaign dubbed DEAD#VAX that employs a mix of "disciplined tradecraft and clever abuse of legitimate system features" to bypass ...
Bleeping Computer

Malicious MoltBot skills used to push password-stealing malware

More than 230 malicious packages for the personal AI assistant OpenClaw (formerly known as Moltbot and ClawdBot) have been published in less than a week on the tool’s official registry and on GitHub.