Dan Goodin is Senior Security Editor at Ars Technica, where he oversees coverage of malware, computer espionage, botnets, ...

The new “agentjacking” attack takes almost no real hacking ability to pull off. It's predicated on pulling a public ...

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

Microsoft details AutoJack exploit chain targeting AutoGen Studio MCP WebSocket in pre-release builds, enabling ...

Starting on June 11, 2026, the Arch User Repository (AUR) was targeted by malware which rapidly compromised over 1,500 packages. The AUR repository allows for abandoned community packages to be taken ...

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

IntroductionOn May 14, 2026, the Zscaler ThreatLabz team identified unusually high activity associated with the threat actor SmartApeSG to deploy malware. During our examination, we discovered ...

What if your AI coding assistant could be tricked into stealing your own company’s secrets – by reading a single ...

The tool has already blocked more than 52,000 risky npm packages as supply chain attacks continue to hit software teams.

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

Page 1552 ...