The Hacker News

VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXi

Threat hunters are warning that the cybercriminal operation known as VECT 2.0 acts more like a wiper than a ransomware due to ...
SecurityWeek

UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware

UNC6692 relies on email bombing and social engineering to infect victims with Snow malware: Snowbelt, Snowglaze, and ...
The New York Times

China Imposes New Rules to Block Foreign Companies From ‘Decoupling’

Multinationals in China are concerned that the regulations could allow authorities to penalize companies and executives for shifting supply chains away from the country. By Keith Bradsher Reporting ...
Women's Wear Daily

Rimaks’ Denim Codes Aims to Unite a Fragmented Denim Supply Chain

It’s time for the denim industry to get closer. That’s the message from Turkish garment manufacturer Rimaks. The company is ushering a new approach to solving the industry’s biggest hurdles with Denim ...
Dark Reading

Claude Source Code Leak Highlights Big Supply Chain Missteps

Sophisticated cyberattacks targeting a variety of open source projects, including the Trivy security-scanner project, the widely used Axios Javascript package, and now Anthropic's accidental ...
VentureBeat

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm access token belonging to the lead maintainer of axios, the most popular HTTP client library in JavaScript, and used it to publish two poisoned versions that install a ...
Los Angeles Times

Anthropic accidentally leaked thousands of lines of code

Anthropic inadvertently released internal source code behind its popular artificial-intelligence-powered Claude coding assistant, raising questions about the security of an AI model developer that has ...
Bloomberg L.P.

Anthropic Accidentally Exposes System Behind Claude Code

Anthropic PBC inadvertently released internal source code behind its popular artificial intelligence-powered Claude coding assistant, raising questions about the security of an AI model developer that ...
POWER Magazine

Cracking the Power Supply Chain Code

The power industry finds itself in an uncomfortable bind. Demand for electricity is surging, driven by data center buildouts, broad electrification, and the retirement of aging coal fleets, but the ...
Stratechery

Axios Supply Chain Attack, Claude Code Code Leaked, AI and Security

AI is going to be bad for security in the short-term, but much better than humans in the long-term. Subscribe to Stratechery Plus for full access. With Stratechery Plus you get access to the ...
Bleeping Computer

Cisco source code stolen in Trivy-linked dev environment breach

Cisco has suffered a cyberattack after threat actors used stolen credentials from the recent Trivy supply chain attack to breach its internal development environment and steal source code belonging to ...