Yahoo Malaysia

The 8 Best Subscription Boxes for Crafters, Tested by Hobbyists

Need a hobby? No problem! Craft subscription boxes are the easiest (and most exciting) way to try new skills each month.
SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Decrypt

This AI Agent Survived 6,000 Hack Attempts—Here’s How

Developer Fernando Irarrázaval's AI agent experiment drew over 6,000 hack attempts from more than 2,000 attackers. No one ...

WhatsApp phishing attack uses fake business docs to hack PCs

An ongoing malware campaign is targeting WhatsApp users in multiple countries with deceptive messages that push VBScript ...
The Hacker News

New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds

Rokarolla targets 217 banking and crypto apps with 137 commands, enabling PIN, SMS code, and crypto payment theft.
TechCrunch

Microsoft’s open source tools were hacked to steal passwords of AI developers

Microsoft has cut off access to dozens of its open source projects hosted on GitHub as it investigates how hackers apparently breached the projects and injected password-stealing malware into the code ...

JaredFromSubway MEV bot hacked in $15 million crypto theft

The JaredFromSubway Ethereum MEV (Maximal Extractable Value) bot suffered a $15 million loss after an attacker manipulated ...

Microsoft discovers new lightweight backdoor that steals cryptocurrency

Microsoft says it has detected new self-propagating malware that spreads through USB drives in search of cryptocurrency ...
CoinDesk

Humanity Protocol token crashes more than 80% after a $32 million private-key hack

Humanity Protocol’s H token plunged more than 80 percent after attackers stole private keys tied to the project and drained over $30 million from at least 17 wallets. The thief has been dumping stolen ...
MIT Technology Review

The Meta hack shows there’s more to AI security than Mythos

Some AI cybersecurity threats are incredibly simple. They’re still dangerous. On June 5, 404 Media reported that attackers had been using Meta’s AI customer support agent to steal Instagram accounts.