SecurityWeek

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe ...

Android TV botnet Popa linked to Israeli firm, Velvet Ant maintained decade-long stealth, unpatched GCP flaw enables takeover.
InfoQ

Azure Functions Ships Serverless Agents Runtime at Build 2026

Azure Functions shipped a serverless agents runtime in public preview at Build 2026. Agents are defined in .agent.md markdown ...
XDA Developers on MSN

Running Pi with local LLMs on a Raspberry Pi sounds chaotic, but it actually works

As long as you temper your expectations, that is ...
The Hacker News

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Tampered JavaScript in three Awesome Motive plugins exposed WordPress sites to rogue admin accounts and hidden backdoors.

「Codex」に開発者モード、Chrome DevTools Protocol(CDP)に接続、Web ...

米OpenAIは6月12日(日本時間)、「Codex」アプリに「開発者モード」(developer mode)を導入したと発表した。「Google Chrome」のブラウザー操作(Browser ...
Tech Times

npm Supply Chain Attack: North Korea Backdoored 144 AI Packages in 88 Minutes

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by ...

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

「Firefox 152」を試す - 設定画面が新しいデザインに

Mozillaは、6月17日(米国時間)にWebブラウザFirefoxの新バージョンとなる「Firefox 152」をリリースした。Firefox 152は、Firefox 151からいつも通りの4週間でのバージョンアップとなった。
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...