Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

Anaconda Releases Desktop in Public Beta, Unifying AI Development Workflow

Anaconda, an infrastructure provider for the Python community, has released Anaconda Desktop in public beta, designed for AI ...

Anthropic brings Photoshop, Premiere Pro, Blender and more creative apps to Claude: here's how it works

Anthropic has upgraded its Claude AI assistant with new connectors for Adobe Creative Cloud, Blender, and Autodesk among ...
The Security Ledger

How Claude Planted Malicious Code In A Crypto-Trading App

A new report from ReversingLabs identified a new tactic by North Korean hackers: feeding malicious code to the AI systems ...
TMCnet

VIAVI Announces Investment in PCIe 7.0 Protocol Analysis Testing Platform

VIAVI Solutions Inc. (VIAVI) (NASDAQ: VIAV) today announced investment in its new PCIe ® 7.0 protocol analysis testing ...
i-SCOOP

DeepSeek V4 puts 1M context and low cost at the center of the open model race

DeepSeek V4 arrives in Pro and Flash variants with a 1M token context window, lower inference costs, and a stronger push into ...
Visual Studio Magazine

Using Data API Builder to Speed Up Application Development

Microsoft's Data API Builder is designed to help developers expose database objects through REST and GraphQL without building a full data access layer from scratch. In this Q&A, Steve Jones previews ...

PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...
Decrypt

AI Agent Deletes Startup’s Database in 9 Seconds, Founder Says

PocketOS founder Jeremy Crane claims a Cursor agent running Claude Opus wiped production data and backups through a single ...
MIT Technology Review

The Download: supercharged scams and studying AI healthcare

When ChatGPT was released in late 2022, it showed how easily generative AI could create human-like text. This quickly caught ...

Top open source PyPI package with over 1 million downloads each month hacked to send out malware

This was not a case of stolen credentials, but rather of vulnerability exploitation.
Newsworthy.ai

An AI Escaped Its Sandbox, Emailed a Researcher, Then Self-Published Its Own Exploit Online!

VectorCertain LLC today announced new validation results demonstrating that its SecureAgent platform successfully detected ...