Vimeo data breach exposes personal information of 119,000 people

The ShinyHunters extortion gang stole personal information belonging to over 119,000 people after hacking the Vimeo online ...
InfoQ

GitHub Enhances CodeQL with Declarative Security Modeling for Faster, More Flexible Analysis

GitHub has introduced a significant update to its CodeQL engine, enabling developers to define custom sanitizers and ...
The Hacker News

⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More

Critical cPanel flaw under attack, Copy Fail Linux privilege escalation, TeamPCP supply chain campaign, GitHub RCE & major ...
SecurityWeek

Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments

A researcher has disclosed the details of a prompt injection attack method named ‘Comment and Control’, which has been found to work against several popular AI code security and automation tools. The ...
Bleeping Computer

Claude Code leak used to push infostealer malware on GitHub

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar information-stealing malware. Claude Code is a terminal-based AI agent from ...
Hacker

Interactive Data Chart Generator (Pure JavaScript Canvas Tool)

I'm an independent creator passionate about building useful tools, simulations, and theories that make complex ideas more accessible. I explore the intersection of technology, education, and human ...
The Hacker News

OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability

A previously unknown vulnerability in OpenAI ChatGPT allowed sensitive conversation data to be exfiltrated without user knowledge or consent, according to new findings from Check Point. "A single ...
TechSpot

GitHub Copilot will use your data for AI training by default, but you can opt out

A hot potato: GitHub has announced that starting April 24, the company will begin using interaction data from Copilot Free, Pro, and Pro+ users to train and improve its AI models unless they opt out.
Thurrott

GitHub to Train AI With User Data by Default

If you have a code repository or other work stored in GitHub, you need to be aware of a major change at the service: It’s will soon start using any data you store in GitHub to train AI models by ...
blockchain

GitHub Shifts Copilot Data Policy to Train AI on User Code by Default

Starting April 24, GitHub will use Copilot Free, Pro, and Pro+ user interaction data for AI training unless developers opt out. Enterprise users excluded. GitHub announced Wednesday that it will begin ...
Space.com

100 new alien worlds: Scientists find hidden haul in data from NASA exoplanet-hunting spacecraft

"Using our newly developed RAVEN pipeline, we were able to validate 118 new planets, and over 2,000 high-quality planet candidates, nearly 1,000 of them entirely new." When you purchase through links ...
Ars Technica

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...