Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
Opinion

LibreOffice Online dragged out of the attic, dusted off for another go

Browser-based version back on the menu, reopening questions about TDF's relationship with Collabora The Document Foundation (TDF) has pulled LibreOffice Online out of its "attic" – its term for ...

ClawJacked attack let malicious websites hijack OpenClaw to steal data

Security researchers have disclosed a high-severity vulnerability dubbed "ClawJacked" in the popular AI agent OpenClaw that allowed a malicious website to silently bruteforce access to a locally ...

Magic City Brewing files for Chapter 7 bankruptcy after closing both Akron taprooms

Magic City Brewing has filed for Chapter 7 bankruptcy after closing its Akron breweries and taprooms this month. Here are the details.

'SNL' takes on Iran attacks and Khamenei killing in cold open

"SNL" kicked off its latest episode with a timely cold open addressing the killing of Supreme Leader Ayatollah Ali Khamenei.

Fake 'interview' repos lure Next.js devs into running secret-stealing malware

Come for the coding test, stay for the C2 traffic Next.js developers are once again in the crosshairs as hackers seed ...
Control Global

New virtualization tools keep sprouting

Just like algae blooms in the ocean and pollen in the spring, there’s been an explosion in the past year or two of new software, related tools and lingo from the IT and mainstream/consumer side. Some ...

Princess Polly plans opening at this Central Florida mall

The Gen Z fashion retailer, Princess Polly, plans to open in August at The Mall at Millenia, which has added multiple brands ...
The Hacker News

Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware

Four rogue NuGet packages and one npm package stole ASP.NET Identity data, deployed C2 backdoors, and reached over 50,000 ...

Inside the night of chaos after the death of 'El Mencho'

The fall of “El Mencho”, accounts of how dozens of Mexican families lived through one of the “most terrifying” nights in ...

Anthropic acquires AI startup Vercept to enhance Claude’s computer use features

Vercept’s first investor was a Seattle-based startup incubator called AI2 Incubator. The organization started out as a unit ...
CSO Online

Your personal OpenClaw agent may also be taking orders from malicious websites

A critical OpenClaw flaw allowed malicious websites to connect to locally running agents, brute-force passwords without ...