The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.
DataBreachToday

Flurry of Supply-Chain Software Library Attacks

As supply-chain attacks against widely-used, open-source software repositories continue, experts are urging developers to not ...

AWS brings OpenAI’s AI models and Codex programming assistant to its cloud

OpenAI Group PBC’s large language models available on its cloud platform. The algorithms are accessible through Amazon ...
SecurityWeek

OpenSSH Flaw Allowing Full Root Shell Access Lurked for 15 Years

An OpenSSH vulnerability introduced 15 years ago could allow attackers to obtain full root shell access to vulnerable servers ...
XDA Developers on MSN

Terminal automation outgrew shell scripts, and Claude's routines are proof

Claude’s Routines feel like the clearest sign yet that terminal automation has outgrown shell scripts and one-off hacks.

Password safe Bitwarden: Command-line client trojanized

The Bitwarden security team confirms that a malicious version of the command-line client was briefly distributed.
Fox Business

Mergers and Acquisitions

American Airlines CEO Robert Isom rejected a potential United Airlines merger as anti-competitive and bad for customers during an earnings call. Warner Bros. Discovery announces stockholders approved ...
About Amazon

AWS launches Amazon Quick desktop AI assistant that works across your applications, tools, and data

Amazon Quick brings a personal AI assistant to your desktop. Build presentations, intelligent dashboards, and more. Connect ...