The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

CyberNX Launches Brand Risk Monitoring Checklist to Help Organisations Detect Brand Abuse Early

MUMBAI, India – 30th April 2026 – CyberNX has published a practical Brand Risk Monitoring Checklist designed to help ...

Mistral AI: New Medium 3.5 Language Model and Cloud Coding Agents

French AI startup Mistral has unveiled the Medium 3.5 language model, along with new cloud features for coding agents and the ...
Silicon Republic

Meta, Microsoft, Amazon and Alphabet post positive quarterlies

Microsoft, Meta, Amazon and Alphabet have posted positive report cards for the quarter past with AI infrastruture needs ...
Techweez

Critical cPanel Bug Lets Anyone Take Over Your Website Without a Password

A vulnerability in cPanel and WHM allows attackers to bypass login and take over websites, but a patch for CVE-2026-41940 is ...
Visual Studio Magazine

VS Code Curbs Token Use Ahead of Copilot's Controversial Usage-Based Billing Switch

Just two days after GitHub announced usage-based billing for Copilot, Microsoft shipped VS Code 1.118 -- under its new weekly release cadence -- with significant token efficiency improvements designed ...

Script Injection and Data Theft: Python Data Analysis Tool Compromised

The popular Python package for monitoring data quality was briefly available as a malicious version. Provider Elementary ...

The never-ending supply chain attacks worm into SAP npm packages, other dev tools

Attackers infected all versions with the same credential-stealing malware that, on Wednesday, poisoned multiple npm packages ...

What Happens in the First 24 Hours After a New Asset Goes Live

When a new asset goes live, attackers start scanning within minutes. Sprocket Security shows how automated attacks move from ...

Stripe introduces Link, a digital wallet that autonomous AI agents can use, too

Link lets users connect cards, banks, and subscriptions, then authorize AI agents to spend securely via approval flows.
Security BoulevardOpinion

When AI Billing Breaks Trust: What the Claude Code Backlash Says About AI Governance

The post When AI Billing Breaks Trust: What the Claude Code Backlash Says About AI Governance appeared first on Security, ...

Here’s how the new Microsoft and OpenAI deal breaks down

Microsoft and OpenAI split, but somehow kept it together.