The Hacker News

⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

Phishing surge, LinkedIn tracking claims, spyware use, and rising stealers expose growing abuse of trusted systems.
Infosecurity Magazine

How Security Leaders Can Safeguard Against Vibe Coding Security Risks

Infosecurity outlines key recommendations for CISOs and security teams to implement safeguards for AI-assisted coding ...

ついにLステップでAPIが開放!外部システムとLステップを直接連携 ...

株式会社Maneql(マネクル)(本社:大阪府堺市/代表取締役社長:田窪 洋士)は、2026年4月1日に、LINEマーケティングツール「Lステップ」において、外部サービスとの連携を可能にするAPIの提供を開始いたしましたことをお知らせします。
Techlomedia

Malicious Axios Versions Published on npm in Major Supply Chain Attack

A new report from StepSecurity has uncovered a serious supply chain attack involving Axios, one of the most widely used HTTP ...
ITWeb

Agents run amok: Identity lessons from Moltbook’s AI experiment

The launch of Moltbook, a social network for AI agents, will go down as the most intriguing mass agentic AI experiment we’ve ...
CSO Online

Anthropic employee error exposes Claude Code source

A version of the AI coding tool in Anthropic's npm registry included a source map file, which leads to the full proprietary ...
Security Boulevard

7 Enterprise Infrastructure Tools That Eliminate Months of Engineering Work

Discover 7 enterprise infrastructure tools that reduce engineering workload, speed deployment, and eliminate months of manual ...
Morning Overview on MSN

Security credentials exposed on thousands of websites, report finds

Researchers from three universities have found that nearly 10,000 webpages are publicly exposing API credentials, leaving ...
WinBuzzer

Trivy Breached Twice in a Month via GitHub Actions

Attackers have hijacked 75 of 76 GitHub Actions tags for Aqua Security's Trivy scanner, distributing credential-stealing ...