pull down to refresh

Compromised npm package silently installs OpenClaw on developer machineswww.csoonline.com/article/4135449/compromised-npm-package-silently-installs-openclaw-on-developer-machines.html
422 sats \ 4 comments \ @winteryeti 24 Feb AI
related
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaignthehackernews.com/2026/04/bitwarden-cli-compromised-in-ongoing.html
1134 sats \ 5 comments \ @Scoresby 23 Apr tech devs
Hacking campaign compromised at least 16 Chrome browser extensionssecurityaffairs.com/172491/hacking/chrome-browser-extensions-compromise.html
266 sats \ 0 comments \ @nym 1 Jan 2025 security
Supply Chain Attack in litellm 1.82.8 on PyPIfuturesearch.ai/blog/litellm-pypi-supply-chain-attack/
373 sats \ 0 comments \ @Scoresby 24 Mar devs
A NixOS User's Guide to openclaw
2591 sats \ 0 comments \ @nerd2ninja 1 Feb AI
Bad Day to Be a Screen - Why Headless AI Agents Kill Conventional UX Patterns
503 sats \ 2 comments \ @UncleJim21 25 Feb AI tech
🚨 CRITICAL: supply chain attack on axios
1626 sats \ 8 comments \ @justin_shocknet 31 Mar devs
Google is launching its own version of OpenClawwww.theverge.com/tech/932996/google-gemini-spark-antigravity-io-2026
276 sats \ 0 comments \ @ch0k1 22 May AI
Flaw in Gemini CLI coding tool could allow hackers to run nasty commandsarstechnica.com/security/2025/07/flaw-in-gemini-cli-coding-tool-allowed-hackers-to-run-nasty-commands-on-user-devices/
218 sats \ 1 comment \ @0xbitcoiner 30 Jul 2025 AI
Claude, Gemini CLI & Copilot Vulnerable to Prompt Injection via GitHub Commentscybersecuritynews.com/prompt-injection-via-github-comments/
398 sats \ 0 comments \ @Tony 21 Apr security AI
We Just Found Malicious Code in the Popular NPM Packagejdstaerk.substack.com/p/we-just-found-malicious-code-in-the
1497 sats \ 18 comments \ @kristapsk 8 Sep 2025 security
TanStack NPM Packages Compromisedgithub.com/TanStack/router/issues/7383
1054 sats \ 7 comments \ @hn 11 May tech
Learn how to use the Terminal (CLI)
564 sats \ 6 comments \ @expatriotic 31 Oct 2025 tutorials
NPM debug and chalk packages compromisedwww.aikido.dev/blog/npm-debug-and-chalk-packages-compromised
263 sats \ 0 comments \ @hn 8 Sep 2025 tech
Latest Strikes S03E18 - April 27th - May 3rd 2026
1957 sats \ 2 comments \ @fanis 8 May bitcoin lightning
Openclaw On Umbrel? Insane?
653 sats \ 2 comments \ @siggy47 8 Apr AI
LiteLLM infected with credential-stealing code via Trivywww.theregister.com/2026/03/24/trivy_compromise_litellm/
503 sats \ 3 comments \ @0xbitcoiner 25 Mar AI
Google Chrome silently installs a 4 GB AI model on your device without consent.www.thatprivacyguy.com/blog/chrome-silent-nano-install/
618 sats \ 2 comments \ @hasherstacker 5 May AI
Zero-Click AI Vulnerability Exposed Microsoft 365 Copilot Datathehackernews.com/2025/06/zero-click-ai-vulnerability-exposes.html
1040 sats \ 0 comments \ @k00b 12 Jun 2025 security
The week in AI, June 24-29, 2025
766 sats \ 7 comments \ @optimism 2 Jul 2025 AI
SesameOp: Novel backdoor uses OpenAI Assistants API for command and controlwww.microsoft.com/en-us/security/blog/2025/11/03/sesameop-novel-backdoor-uses-openai-assistants-api-for-command-and-control/
222 sats \ 0 comments \ @0xbitcoiner 4 Nov 2025 AI
'Sha1-Hulud' npm malware is back
377 sats \ 0 comments \ @anon 28 Nov 2025 lightning