npmx.dev: New website for npm package search

The open-source project npmx is used for fast searching of npm packages. It focuses on UX, displays vulnerability warnings, and offers a dark mode.
Security Boulevard

How Threat Actors Turned OpenClaw Into a Scraping Botnet

How did OpenClaw become botnet infrastructure so quickly? DataDome analyzes the hijacked AI agents scraping sites at scale ...
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 ...
Cybernews

AI agents are too easy to fool, with websites now littered with hidden “system override” commands

Researchers at Unit 42, a security arm of Palo Alto Networks, have documented real-world attacks, and they’re as dumb as it gets. Hidden text on websites simply asks AI to “ignore previous ...

Software Development: Abstraction is Overrated

Abstraction is considered a virtue in software development. However, practice shows that wrong abstractions cause more harm ...

The AI engine pipeline: 10 gates that decide whether you win the recommendation

AI recommendations are decided upstream. Understand the 10-gate pipeline, where brands fail, and how small improvements ...

AI Agents Broke Your Security Stack. Here’s What Comes Next

Shreyans Mehta is the cofounder and CTO of Cequence Security, a pioneer of unified application and API protection.