Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...

Hamster Kombat GameDev Daily Cipher codes for 1 March 2025: Unlock million coins and know how to play

Hamster Kombat since its debut in March 2024 has created a buzz within the crypto gaming community, and it has already gained ...

Surface RTX Spark Dev Box Features, Price, Specs, Where to buy, Release date

Surface RTX Spark Dev Box is a compact, small-form-factor desktop PC that is built specifically for developers and data ...
The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.

OpenAI's new GPT-5.5-Cyber tops Claude Mythos 5 in vulnerability benchmark0 0

OpenAI is rolling out the full, limited-release version of GPT-5.5-Cyber—a specialized AI model that outperforms its ...

OpenAI expands Daybreak with Patch the Planet and full GPT-5.5-Cyber release

OpenAI Group PBC today expanded its Daybreak cybersecurity program with a new open-source patching initiative called Patch ...

From PGP to Mythos: a brief history of export controls that didn’t stop anyone

For the last 30 years, stopping the flow of cybersecurity-related software has proven to be ineffective. It's unclear why it ...
Blockonomi

Cipher Digital (CIFR) Stock Soars to Record $28.64 — Red Flags Emerge Despite Rally

Cipher Digital (CIFR) reaches all-time high of $28.64, up 649% yearly. Amazon data center deal drives gains, but $822M losses raise valuation questions.
The Hacker News

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

ThreatsDay Bulletin covers AI abuse, poisoned packages, phishing, macOS attacks, SD-WAN flaws, scams, and supply-chain ...

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...
The Print

Atomesus unveils Cipher 8B language model, opens developer API with substantial free credits

Atomesus has officially entered the artificial intelligence language model market with the launch of Cipher 8B — a model the ...
Meduza

Russia’s federal censor denies blocking Python’s package index as developers scramble for workarounds

On Monday, Russian users found they could no longer reach PyPI, the package repository that Python developers rely on for ...