The Hacker News

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

TrapDoor spread 34 malicious packages across npm, PyPI, and Crates.io, stealing developer credentials and enabling persistence.
CSO Online

Unpatched ChromaDB flaw leaves servers open to remote code execution

The ChromaToast vulnerability can be exploited by forcing the ChromaDB API server to fetch and load maliciously crafted AI ...
SecurityWeek

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Attackers are increasingly abusing Microsoft’s legacy MSHTA utility to silently deliver malware, stealers, and persistent ...

Meta May 20 layoff: As ‘doomsday’ nears, anxious employees stock up on free snacks, chargers; apply to jobs preemptively

Employees have described the severance package as unexpectedly generous, calling it a “golden parachute” as the tech firm ...

Winter Cold Snaps Drive Spike In Southwest Florida Manatee Deaths

A succession of intense winter freezes has triggered a sharp increase in manatee mortality across Southwest Florida.

MegaConvert.io Launches Free File Converter With 500+ Formats in 47 Languages

Free platform converts documents, images, video, audio, and ebooks from any browser — no signup required. Developer API included. We built MegaConvert to be the simplest file converter on the web — no ...
CNET

Leave Those Laptops at Home. OpenAI Adds Codex to ChatGPT Mobile App

Out in the real world, with Codex in the ChatGPT mobile app, users can accomplish tasks without juggling a laptop or having ...
The Hacker News

TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates

Mini Shai-Hulud hit 2 OpenAI devices via TanStack, exposing limited credentials and forcing macOS certificate updates by June ...

A rare sanctuary in Congo looks after baby bonobos away from poaching threat

Micheline Nzonzi cradled a small and sleepy bonobo, an orphan whose life she will try to save over the next three years or so. “Without me, without us, these bonobos cannot survive,” said Nzonzi, ...
MUO on MSN

Notepad++ isn't the best app for huge files anymore — I tested the alternatives

Notepad++ has a worthy rival for huge files.
CIO

AI is ready to take over Python programming, but not much else

New research from a trio of Microsoft researchers reveals that LLMs ‘introduce substantial errors when editing work documents.’ ...

Hacker group targeted companies in South Africa using fake SARS notifications

Hacker group SilverFox spent January and February attempting to hack South African companies using fake SARS tax emails.