The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...
Hackaday

Automatic Tutorial Generator Is Perhaps The Best-Case For Vibe Coding

Quick question: how did you learn to code? It probably wasn’t bribing someone a year or two ahead of you in CS to finish all ...

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.
The New York Times

‘Life Hack’ Review: A Heist That Never Leaves the Screen

A group of teenagers seem to be targeting a cryptocurrency billionaire out of boredom, but they have a more sympathetic motive in this hacker film. By Chris Azzopardi When you purchase a ticket for an ...
TechCrunch

GitHub says hackers stole data from thousands of internal repositories

GitHub, the popular developer platform owned by Microsoft, confirmed it was hacked and attackers had stolen data from around 3,800 internal code repositories. The code hosting and sharing giant said ...
TechRadar

Microsoft warns hackers are exploiting password resets to gain access to user accounts - here's how to stay safe

Microsoft researchers warn Storm‑2949 is abusing the Self‑Service Password Reset flow to hijack accounts Attackers trick victims into approving MFA prompts via phone calls, then reset passwords and ...
CNN

Exclusive: Hackers have breached tank readers at US gas stations; officials suspect Iran is responsible

US officials suspect Iranian hackers are behind a series of breaches of systems that monitor the amount of fuel in storage tanks serving gas stations in multiple states, according to multiple sources ...
The Guardian

Canvas hack: is it ever a good idea to pay a ransom, and what happens to the data?

Businesses are advised against paying – but many are prepared to deal to protect users’ privacy After a week of outages, hundreds of millions of students’ data stolen, delayed assignment due dates and ...
Forbes

The Canvas Hack Shows Ransomware Isn’t Going Anywhere

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Instructure, the parent company of the popular online education platform Canvas, this week ...
Sydney Morning Herald

Ransom ‘paid’ to hackers who crippled online learning in Australia

The parent company of Canvas, the online learning platform used by hundreds of thousands of Australian students and teachers, has struck a deal with the cybercriminal gang that stole personal data ...
CNET

Russia's Military Hackers Targeted Home Routers Across 23 States. Here's What to Do

Federal agencies disrupted the attack but were direct about what comes next. These five router security steps are the responsibility of individual owners. Joe Supan is a senior writer for CNET ...