The Hacker News

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

Open VSX bug misread scanner failures as clean results, letting malicious VS Code extensions go live before patch in v0.32.0.
Infosecurity Magazine

Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code

Security researchers from Georgia Tech have observed a surge in reported CVEs for which the flaw was introduced by ...

GitHub Copilot will use your data for AI training by default, but you can opt out

GitHub describes this training data as inputs, outputs, code snippets, and associated context, but the fine print goes into ...
Windows Report

GitHub Copilot Will Learn From Your Prompts and Code Unless You Opt Out

Microsoft will train GitHub Copilot using user interaction data by default. Users must opt out before April 24 to avoid data ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...

ClawSecure Outranks Google on Product Hunt as Demand for OpenClaw Security Surges

ClawSecure reached #2 Product of the Day with 1,498 users scanning OpenClaw agents in 24 hours, outranking Google ...
The Hacker News

Claude Code Security and Magecart: Getting the Threat Model Right

Magecart hides payload in favicon EXIF via third-party scripts, bypassing static analysis and stealing checkout data at ...
Visual Studio Magazine

Cracking the Code of Serverless Design: Patterns that Scale and Patterns that Fail

Serverless is an architectural style that succeeds only when paired with intentional design patterns. Event-driven approaches often provide simpler, more resilient solutions than overused ...
Des Moines Register

New Iowa tool maps cancer rates by ZIP code, revealing hidden patterns

This story was updated because an earlier version included inaccuracies. People who live in Urbandale's ZIP code 50323 have a breast cancer rate more than two times higher than Iowans who live in Fort ...
The New York Times

In Minneapolis, a Pattern of Misconduct Toward Protesters

Legal and criminal justice experts said a ruling by a federal judge last week revealed conduct by immigration agents that evokes the civil rights era. By Stephanie Saul A protester detained, her bra ...
Wall Street Journal

Claude Is Taking the AI World by Storm, and Even Non-Nerds Are Blown Away

It’s the moment software engineers, executives and investors turn their work over to Anthropic’s Claude AI—and then witness a thinking machine of shocking capability, even in an age awash in powerful ...