The Hacker News

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...

Python libraries used in top AI and ML tools hacked - Nvidia, Salesforce and other libraries all at risk

Security researchers from Palo Alto Networks have discovered vulnerabilities used in some top Artificial Intelligence (AI) ...

A critical n8n flaw has been discovered - here's how to stay safe

The vulnerability was fixed in n8n version 1.111.0, with the addition of a task-runner-based native Python implementation ...
Dark Reading

AsyncRAT Malware Infests Orgs via Python & Cloudflare

The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade ...

Popular Python libraries used in Hugging Face models subject to poisoned metadata attack

Vulnerabilities in popular AI and ML Python libraries used in Hugging Face models with tens of millions of downloads allow ...

MIT’s new ‘recursive’ framework lets LLMs process 10 million tokens without context rot

While standard models suffer from context rot as data grows, MIT’s new Recursive Language Model (RLM) framework treats ...
DataBreachToday

Flaw in AI Libraries Exposes Models to Remote Code Execution

Researchers discovered remote code execution vulnerabilities in three AI libraries from Apple, Salesforce and Nvidia used by ...

Orchestral replaces LangChain’s complexity with reproducible, provider-agnostic LLM orchestration

A new orchestration approach, called Orchestral, is betting that enterprises and researchers want a more integrated way to ...

AI Coding Assistants Are Getting Worse

In recent months, I’ve noticed a troubling trend with AI coding assistants. After two years of steady improvements, over the ...
The Hacker News

Hackers Exploit c-ares DLL Side-Loading to Bypass Security and Deploy Malware

Active malware exploits DLL side-loading in a signed GitKraken binary to deliver trojans, stealers, and remote access malware ...

Ukraine's army targeted in new charity-themed malware campaign

Officials of Ukraine's Defense Forces were targeted in a charity-themed campaign between October and December 2025 that ...