The Hacker News

OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident

OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing ...
InfoWorld

Anthropic’s latest model is deliberately less powerful than Mythos (and that’s the point)

Claude Opus 4.7 improves on performance and usability, but is intentionally dialed down in capability as Anthropic ...

ChatGPT built me this awesome March Madness bracket with just this one prompt — I hope it doesn't get busted

Next, ChatGPT used the data to make what it termed "reasonable tournament picks," but also considered historical upset data.

Malware campaign lures users with fake Windows Update website

Malwarebytes recently uncovered a new malicious campaign targeting the Windows Update service. Focused on French-speaking users, the campaign uses layered obfuscation techniques to deliver multiple ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

Over 100 Chrome Web Store extensions steal user accounts, data

More than 100 malicious extensions in the official Chrome Web Store are attempting to steal Google OAuth2 Bearer tokens, ...

Going beyond decibels: Visualising how annoying traffic noise really is

We measured traffic noise in 25 homes across Singapore for a Straits Times interactive story. Here is how the data was ...
The Hacker News

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.
CSO Online

Microsoft’s new Agent Governance Toolkit targets top OWASP risks for AI agents

The open-source project maps directly to OWASP’s top 10 agentic AI threats, aiming to curb issues like prompt injection, ...
Live Science on MSN

Hackers used Claude and ChatGPT to steal hundreds of millions of Mexican government records

A group of hackers used both Claude Code and ChatGPT in a cybersecurity hack that lasted two and a half months.
Morningstar

Direct Web Services

Modernize your digital platforms with Direct Web Services investment data, research, and analytics APIs. Easily integrate Morningstar’s data and research directly into your web applications to enhance ...