Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.
Arabian Post

Formbook phishing turns stealth into scale

Two separate phishing campaigns are hitting organisations with Formbook, a long-running information stealer that continues to adapt its delivery methods to slip past traditional Windows defences. The ...
Infosecurity Magazine

Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection

Two phishing campaigns, each using a different stealthy infection technique, are targeting organizations in attacks which aim ...
GovInfoSecurity

Breach Roundup: Mr. Raccoon Wants Your Password

This week, a "Raccoon"-linked actor hit help desks, Eurail exposed 308K users, Fortinet patched critical flaws, Pushpaganda ...

Malware campaign lures users with fake Windows Update website

Malwarebytes recently uncovered a new malicious campaign targeting the Windows Update service. Focused on French-speaking users, the campaign uses layered obfuscation techniques to deliver multiple ...
The Hacker News

⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More

Stay ahead of the logs with our Monday Recap. We break down active Adobe 0-days, North Korean crypto stings, and critical CVEs you need to patch today ...

Three by-elections, a floor-crosser and the week we learned that anyone can come and anyone can go

Opinion: A Liberal Party in a triumphal mood finds it easier to accept conflicting values And her constituents will not be ...
NBC News

Anyone can code with AI. But it might come with a hidden cost.

Anyone can code using AI. But it might come with a hidden cost. Subscribe to read this story ad-free Get unlimited access to ad-free articles and exclusive content. Over the past year, AI systems have ...
Business Insider

A 4 a.m. scramble turned Anthropic's leak into a 'workflow revelation'

Coders have had a field day weeding through the treasures in the Claude Code leak. "It has turned into a massive sharing party," said Sigrid Jin, who created the Python edition, Claw Code. Here's how ...
Wall Street Journal

Anthropic Races to Contain Leak of Code Behind Claude AI Agent

WSJ’s Kate Clark demonstrates how Anthropic’s new Cowork tool can help non-coders automate their lives–or at least attempt to. Photo: Claire Hogan/WSJ Anthropic is racing to contain the fallout after ...
CNET

Anthropic Accidentally Exposes Source Code for Claude Code

Steven Musil is a senior news editor at CNET News. He's been hooked on tech since learning BASIC in the late '70s. When not cleaning up after his daughter and son, Steven can be found pedaling around ...
The Verge

Claude Code leak exposes a Tamagotchi-style ‘pet’ and an always-on agent

The more than 512,000 lines of leaked code appear to show unreleased features, instructions for Claude, and more. The more than 512,000 lines of leaked code appear to show unreleased features, ...