The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

Keeper Security Launches Agent Kit to Secure AI-Driven Developer Workflows

New integration enables AI coding agents to securely retrieve secrets and manage infrastructure without exposing ...

CyberNX Launches Brand Risk Monitoring Checklist to Help Organisations Detect Brand Abuse Early

MUMBAI, India – 30th April 2026 – CyberNX has published a practical Brand Risk Monitoring Checklist designed to help ...

Algolia Announces Integration with Stripe Projects to Accelerate Application Development

Algolia announces its integration with Stripe Projects that streamlines how application infrastructure is provisioned and managed.

The never-ending supply chain attacks worm into SAP npm packages, other dev tools

Attackers infected all versions with the same credential-stealing malware that, on Wednesday, poisoned multiple npm packages ...
Unite.AI

Nine Seconds to Zero: What the PocketOS Incident Reveals About Enterprise AI Risk

On the morning of April 25, 2026, a tech founder watched his company’s production database disappear. Not corrupted. Not partially overwritten. Gone, along with every backup, in nine seconds. The ...

What Happens in the First 24 Hours After a New Asset Goes Live

When a new asset goes live, attackers start scanning within minutes. Sprocket Security shows how automated attacks move from ...
Security Boulevard

Benchmarking AI Pentesting Tools: A Practical Comparison

Escape, Shannon, Strix, PentAGI, and Claude against a modern vulnerable application. Learn more about their detection rates, ...
Hoodline

SF Startup Blindsided As ‘Rogue’ AI Nukes PocketOS Data In Nine Seconds

Railway told ABC News that engineers stepped in, pulled from off-site disaster backups to recover users’ material, and ...
Bdaily

Five Common Vulnerabilities Found in Today's Mobile Apps

Most people install an app, grant it a few permissions, and never give its security another thought. But behind the… | ...

OKX rolls out Agent Payments Protocol for full AI-driven transactions

OKX is pushing APP as an open standard for AI agent commerce across Solana/Ethereum and multiple chains, with low/no-gas via ...
Cryptopolitan on MSN

Crypto devs face new threat from Claude-based malware

A threat group planted a malicious npm package in a crypto trading project through an AI-generated commit by Anthropic's ...