New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
The Hacker News

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

CVE-2026-5752 CVSS 9.3 flaw in Terrarium enables root code execution via Pyodide prototype traversal, risking container ...
The Hacker News

NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs

NGate abuses HandyPay in Brazil since Nov 2025, stealing NFC data and PINs to enable ATM fraud and unauthorized payments.
Reuters

North Korea-linked hack hits largely invisible software that powers online services

March 31 (Reuters) - Hackers linked to North Korea breached behind-the-scenes software that runs many common online functions in an effort to steal login information that could enable further cyber ...
PBS

News Wrap: Pro-Iranian group claims it hacked Kash Patel's email account

In our news wrap Friday, a pro-Iranian and pro-Palestinian hacking group claims it breached an email account belonging to FBI Director Kash Patel, lawyers representing Fulton County asked a federal ...
Business Insider

airSlate SignNow Launches MCP Server: From Prompt to Signed — In No Time

BOSTON, March 18, 2026 (GLOBE NEWSWIRE) -- airSlate SignNow, an award-winning provider of e-signature solutions, today announced the launch of the SignNow MCP Server — a Model Context Protocol (MCP) ...
Today

Can You Really ‘Poach’ an Egg Using a Strainer? I Tried the Viral Hack

It’s more sought-after than precious metals, more treacherous than Mount Everest and more elusive than the Loch Ness Monster. It’s the perfect poached egg. They so often break, spread into a big mess ...
Bloomberg L.P.

US Military Relying on AI as Tool to Speed Iran Operations

US military forces are turning to a range of artificial intelligence tools to quickly manage enormous amounts of data for operations against Iran, according to US Central Command, highlighting the ...
CBS News

Anthropic's Claude AI being used in Iran war by U.S. military, sources say

Two sources familiar with the U.S. military's use of artificial intelligence confirm that the U.S. used Anthropic's Claude AI model over weekend for the attack on Iran — and is still using it. The ...
9to5Mac

Some Apple AI servers are reportedly sitting unused on warehouse shelves, due to low Apple Intelligence usage

Earlier this year, Bloomberg reported that Apple was looking to host the much-delayed new Siri models on Google servers, rather than Apple’s Private Cloud Compute. The Information is reporting a ...
TechCrunch

Intellexa’s Predator spyware used to hack iPhone of journalist in Angola, research says

A government customer of sanctioned spyware maker Intellexa hacked the phone of a prominent journalist in Angola, according to Amnesty International, the latest case of targeting someone in civil ...