The Hacker News

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.
Analytics Insight

How HTML to PDF APIs are Replacing Legacy Document Generation Tools in 2026

The tools businesses relied on for large-scale document generation over the past two decades are starting to lose ground, and ...
The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...
The Security Ledger

How Claude Planted Malicious Code In A Crypto-Trading App

A new report from ReversingLabs identified a new tactic by North Korean hackers: feeding malicious code to the AI systems ...

Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.
PCMag

Is Incognito Enough? 6 Ways to Protect Your Privacy When Watching Porn Online

No, taping over your webcam isn't going to cut it. From VPNs to tracker blockers, here's how to stay safe online while ...