The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

How ChatGPT conversations became ‘a treasure trove’ of evidence in criminal investigations

As the law stands now, your AI conversations can find their way from a computer into the courtroom.

Anthropic’s Little Brother

OpenAI is racing to catch up to its greatest rival.

Anthropic's new Claude Security tool scans your codebase for flaws - and helps you decide what to fix first

It uses Opus 4.7 to scan, validate, and generate patches, helping fix dangerous flaws before they can be exploited.
Hackaday

This Week In Security: State Malware, State Hardware Bans, And Stuxnet Before Stuxnet Was Cool

Making headlines everywhere is the CopyFail Linux kernel vulnerability, which allows local privilege escalation (LPE) from any user to root privileges on most kernels and distributions. Local ...

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM ...
SecurityWeek

Sophisticated Deep#Door Backdoor Enables Espionage, Disruption

The stealthy Python-based backdoor framework deploys a persistent Windows implant likely designed for espionage.
TalkAndroid

Android updates hiding “Morpheus” malware: how hackers trick millions into giving up their data

The number of Android apps infected with malware keeps climbing. According to reports, millions of devices have been ...
BeInCrypto

AI Is 2x Better at Exploiting Smart Contract Flaws Than Catching Them, Binance Finds

Binance Research finds that AI is twice as effective at exploiting smart contracts, with GPT-5.3-Codex achieving a 72% ...

A heist mastermind got caught and kept on stealing — then one job ended in murder

A Los Angeles man admitted to recruiting thieves — who claimed they never knew each other's real names — for brazen robberies ...

This New Android Spyware Uses a WhatsApp Trick to Hand Over Your Account

The post This New Android Spyware Uses a WhatsApp Trick to Hand Over Your Account appeared first on Android Headlines.