GitHub adds AI-powered bug detection to expand security coverage

GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static ...
VietNamNet

DarkSword leak puts 220 million iPhones at risk

A sophisticated malware tool capable of extracting sensitive data has surfaced online, prompting swift warnings.

Crunchyroll Officially Wipes Out 900+ Anime Piracy Apps in 1 Move

Crunchyroll's anti-piracy push continues to yield results, as the streamer's legal team has shut down over 900 third-party ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.
CSO Online

Trivy supply chain breach compromises over 1,000 SaaS environments, Lapsus$ joins the extortion wave

Socket and Wiz confirm widespread credential theft and worm‑like propagation, with cached malicious Trivy artifacts still ...
Macworld

Apple urges iPhone users to update as new DarkSword hacking tool lands online

Apple reportedly urges iPhone users to update immediately after the DarkSword hacking toolkit became freely available on ...

Anthropic’s Claude can now control your Mac, escalating the fight to build AI agents that actually do work

Anthropic has given Claude the ability to control a Mac, marking a major step in the AI agent race and raising new questions ...
iDrop News

‘DarkSword’ Unsheathed: Why Your iPhone Needs a Shield Today

The DarkSword exploit is now publicly available to amateur hackers. Check our list to see if your iPhone or iPad requires an ...

A New DarkSword Version Just Leaked Online & Millions of iPhones Are Now at Risk

A new DarkSword version has leaked on GitHub, letting anyone hack older iPhones without expertise. Here's what you need to ...
Dark Reading

GitHub 'OpenClaw Deployer' Repo Delivers Trojan Instead

An AI-assisted campaign is spreading more than 300 poisoned packages for diverse assets ranging from developer tools to game ...
The Hacker News

Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials

Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency ...
TMCnet

CNCF and SlashData Report Finds Platform Engineering Tools Maturing as Organizations Prepare for AI-Driven Infrastructure

New CNCF Technology Landscape Radar survey shows which cloud native tools developers view as mature and ready for broad adoption. Key Highlights: CNCF and SlashData release findin ...