New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
Pen Test Partners

ClickFix, CrashFix and the growing family of copy and paste attacks

TL;DR Introduction At the start of this year, I wrote a blog on how 2025 was the ‘year of the infostealer’, and it doesn’t ...
The Hacker News

OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack

The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that targeted domestic ...

Norks blast 250+ fake job offers to developers over 6 weeks to try and snarf creds and crypto

There's another likely North Korean-linked scam hitting developers and their employers, while snarfing up credentials and ...
GovInfoSecurity

Breach Roundup: CISA Says Agencies Should 'Patch Smarter'

This week, CISA tightened patching rules, hackers provoked AI scanners. An accused Russian intel hacker appeared in court.

Codestrap Redefines Architecture of Agentic Work, Solves AI Cost Crisis

Research from Leading Academic Institutions Finds Average End-to-End Enterprise Software Workflows Require 4.17M Tokens at a Cost of $1.857. Codestrap Delivers Similar Workflows for Only 61,000 Tokens ...
The Tech Edvocate

How to install Visual Studio Code

Spread the love“`html Visual Studio Code (VS Code) has rapidly become one of the most popular code editors among developers worldwide. Its flexibility, ease of use, and robust features make it a go-to ...
InfoWorld

Microsoft open sources AI evaluation framework for enterprise agents

A new tool enters a growing AI testing market as analysts say most organizations still do not evaluate agent behavior before ...
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...
Microsoft

AI brands as bait: How threat actors are using the AI hype in social engineering

As threat actors operationalize AI to accelerate attacks, they are also leveraging the wider global interest around AI itself ...

Sperax Launches SperaxOS: The AI Agent Workspace for DeFi, Seven Years in the Making

Palo Alto, California, June 11, 2026 (GLOBE NEWSWIRE) -- Sperax, the DeFi protocol founded in late 2019 and creator of USDs, ...