Dark Reading

Rust-Written IronWorm Hits NPM Supply Chain

A newly discovered malware campaign targeting the open source software ecosystem underscores how rapidly supply chain threats are evolving. The campaign, which JFrog has dubbed "IronWorm," targets ...
CSO Online

Hugging Face Transformers RCE flaw enables stealthy compromise via AI model configs

With over 2.2 billion installs, the flawed Python package offers attackers a huge blast radius, including silent access to ...
New Scientist

Flood of AI 'garbage' is pushing open-source developers to the limit

The modern world depends on open-source software maintained by volunteers, but the added demands of checking and fixing ...

Supabase doubles valuation to $10B in 8 months

Supabase, an example of an open source project becoming a fast-growing company, has greatly benefited from AI tools like ...

Open-source software unlocks rapid DNA structure generation and analysis in one workflow

Computational chemists at the University of Amsterdam's Van 't Hoff Institute for Molecular Sciences have developed a ...

I had ChatGPT build me a free PDF editor because I didn't trust it to change my files - it worked!

The smartest way to use AI may not be letting it touch your files, but asking it to write software that handles them safely - ...
PCMag

Gemini 3.5 Flash Is the Fastest AI Coding Model I've Used...and Extremely Error-Prone

Gemini 3.5 Flash is shockingly fast at generating code and spinning up agents, but that speed comes at a cost: sloppy ...
The Hacker News

ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...

Vibe-coding phenomenon lifts AI startup Supabase to $10.5 billion valuation

Database startup Supabase announced a $500 million funding round that values the company at $10.5 billion, including the ...

Walmart's Code Puppy was born from rage at AI's lock-in trap

Walmart's viral Code Puppy AI tool helps avoid vendor lock-in, cut costs, and reduce dependence on Claude Code and Codex.
The Hacker News

⚡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More

Your Monday cybersecurity recap covers the latest digital threats, exposed weaknesses, active attacks, and security stories ...

Inside the unseen operation to turbocharge Claude Code

Two contractors told Business Insider they earned up to $280 per hour on the ongoing project.