New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
American Banker

Unpatched AI flaw poses risk to banking sector

An unpatched vulnerability in Anthropic's Model Context Protocol creates a channel for attackers, forcing banks to manage the ...
eWeek

Meta to Track Employee Keystrokes, Mouse Movements for AI Training

In this episode of eSpeaks, Jennifer Margles, Director of Product Management at BMC Software, discusses the transition from ...