The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Action Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...

TIS、Amazon BedrockとClaude Codeを組み合わせたAI開発環境の全社標準化を ...

【プレスリリース】発表日:2026年06月09日TIS、Amazon BedrockとClaude Codeを組み合わせたセキュアなAI開発環境の全社標準化を実現〜エンタープライズシステム開発に求められる高いセキュリティ要件を担保〜TISインテックグループのTIS株式会社(本社 : 東京都新宿区、代表取締役社長 : 岡本 安史、以下 : TIS)は、Amazon BedrockとClau ...

The £5,000 British sex cruise setting sail — with tantra, lube and no single men

This spicy cruise sets sail today, but what does it involve? (Picture: Killing Kittens) Want to embrace your sexual side in ...
Cryptopolitan

Attackers trojanized Arweave’s WeaveDB npm package to deploy malware

A malware named IronWorm spread through 36 npm packages in the Arweave ecosystem, stealing developer credentials and self ...
The Hacker News

⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and More

Your weekly cybersecurity recap: a GitHub supply chain worm, an exploited Android flaw, Instagram account takeovers, and a ...
Tech Times

Fake Claude Code Installers on 32 Live Sites Steal Developer API Keys via Google Ads

Fake Claude Code installer malware used Google Ads to place spoofed AI tool pages above real documentation since March 2026.
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...