The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Action Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...
IEEE

Code Cloning in Solidity Smart Contracts: Prevalence, Evolution, and Impact on Development

Abstract: In recent years, the development of Solidity smart contracts has been increasing rapidly in popularity. Code cloning is a common coding practice, and many prior studies have revealed that ...
Dark Reading

'Hades' Campaign Against PyPI Puts New Spin on Shai-Hulud

Threat actors have struck the software supply chain yet again, this time hitting the Python Package Index (PyPI) with Mini Shai-Hulud in an attempt to spread poisoned code. In the latest campaign, ...
GitHub

EvoMap/gep-sdk-js

Single source of truth for the Genome Evolution Protocol (GEP): JSON Schemas, the human-readable specification, and the protocol-level helpers that downstream implementations need to agree on asset_id ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
Rock Paper Shotgun

Brainrot Evolution codes

On the lookout for the latest Brainrot Evolution codes? This brainrot-focused RPG aims to answer one simple question: If you were a small chimpanzee that lived inside a banana peel, how many cactus ...
GitHub

Agentic Harness Engineering: Observability-Driven Automatic Evolution of Coding-Agent Harnesses

Customer stories Events & webinars Ebooks & reports Business insights GitHub Skills ...