The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.

How I vibe-coded a web tool in three days with no programming experience

AI chatbots make it possible for people who can’t code to build apps, sites and tools. But it’s decidedly problematic.

2025年11月リリースのAIモデル「GPT-5.1」と「Opus 4.5」がコーディング ...

Pythonのウェブフレームワーク「Django」などの開発で知られるソフトウェアエンジニアのサイモン・ウィリソン氏が、ポッドキャストでAIによってどのように開発の現場が変わっているのかを語りました。 Highlights from my conversation about agentic engineering on Lenny’s Podcast ...
The Hacker News

$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation

M stolen after six-month DPRK social engineering campaign began fall 2025, exposing Drift’s contributors and cloud assets.

MCP, A2A, NLWeb, And AGENTS.md: The Standards Powering The Agentic Web

The next phase of the web depends on shared AI standards, and these four protocols are quickly becoming the foundation ...