The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
Tax Guru

GST Introduces IMS Offline Tool to Simplify Bulk Invoice Management

The GST portal launches an Excel-based IMS Offline Tool to help taxpayers efficiently manage and process invoices. It enables ...
The Hacker News

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.
InfoWorld

The front-end architecture trilemma: Reactivity vs. hypermedia vs. local-first apps

Web developers are moving away from the library wars and into a world of architectural choice. It’s about where you want the ...

Unlock your Mac’s secret features for less than $26

With this app, you can reveal hidden files in Finder, clear logs and caches eating your space, batch convert images, and more ...
ET CIO

SAS strengthens AI-ready data management for agentic automation

SAS has refreshed its Data Management portfolio, built on the SAS Viya platform, to address enterprise challenges in AI ...
Computer Weekly

SAS cements agentic AI-ready data management foundation

Well, it’s a lot of factors i.e. it’s the fact that production-grade agentic AI services are still embryonic (or at least ...

ComfyUI Raises $30M at $500M Valuation to Scale Open-Source AI for Creative Production

Open-source AI workflow platform surpasses 4M users and 50K daily downloads as investors back creator-first infrastructureSAN FRANCISCO, April 24, 2026 (GLOBE NEWSWIRE) -- Today, ComfyUI announced a ...

Naftiko Launches Alpha of Open-Source Framework That Turns API Sprawl Into Governed Capabilities for AI

Large enterprises manage an average of 1,295 SaaS applications and over 14,000 internal APIs. PARIS, ÎLE-DE-FRANCE, ...
CSO Online

More fake extensions linked to GlassWorm found in Open VSX code marketplace

Socket has notified the Eclipse Foundation, which oversees the Open VSX marketplace, of the latest fraudulent additions, and Burckhardt expects that by now all 73 have been deleted.
DataBreachToday

Researchers Find 38 Flaws in OpenEMR. They've Been Fixed

Researchers at security firm AISLE said they recently identified 38 vulnerabilities, including two maximum-severity zero-day ...
The Security Ledger

How Claude Planted Malicious Code In A Crypto-Trading App

A new report from ReversingLabs identified a new tactic by North Korean hackers: feeding malicious code to the AI systems ...