The Hacker News

Malicious VSX Extension "SleepyDuck" Uses Ethereum to Keep Its Command Server Alive

Researchers uncover SleepyDuck RAT hidden in VSX extension, using Ethereum contracts to control infected hosts.
The Hacker News

Eclipse Foundation Revokes Leaked Open VSX Tokens Following Wiz Discovery

Eclipse Foundation, which maintains the open-source Open VSX project, said it has taken steps to revoke a small number of ...

Claude Code trojan found in NPM

Supply chain security company Safety has discovered a trojan in NPM that masqueraded as Anthropic’s popular Claude Code AI ...

183 million email passwords leaked: Check yours now

Cybersecurity experts warn about one of the largest credential compilations ever found, urging users to check "Have I Been ...

Infostealer for Windows, macOS and Linux found in ten packages on npm

The npm packages were available since July, have elaborately obfuscated malicious routines, and rely on a fake CAPTCHA to ...
The Malaysian Reserve

Mem0 Raises $24M Series A to Build Memory Layer for AI Agents

With 14M+ downloads, over 41,000 Github stars, and backing from leading AI infrastructure CEOs, Mem0 aims to solve AI agents' ...

Tips For Ranking No. 1 In AI Search Results: The New Era Of SEO

In order to rank inside AI answers, companies need to structure content, implement metadata and build authority. Here's the ...

Rockwell Automation Launches FactoryTalk Design Workbench, a Free Software Tool for Building Micro Control Systems Smarter and Faster

Rockwell Automation, Inc. (NYSE: ROK), the world's largest company dedicated to industrial automation and digital ...

Mem0 raises $24 million Series A to build memory layer for AI agents

AI infrastructure firm Mem0 secures $24 million in Series A and Seed funding led by Basis Set Ventures to build a memory ...
CSO Online

Typo hackers sneak cross-platform credential stealer into 10 npm packages

The typosquatted packages auto-execute on installation, fingerprint victims by IP, and deploy a PyInstaller binary to harvest ...
CSO Online

BlueNoroff reemerges with new campaigns for crypto theft and espionage

GhostCall and GhostHire use fake investor meetings and bogus recruiter tests to deliver cross-platform malware to blockchain ...