Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
The Hacker News

⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

Phishing surge, LinkedIn tracking claims, spyware use, and rising stealers expose growing abuse of trusted systems.

How to install and use Midjourney AI on Windows PC

There are two legitimate ways to access Midjourney AI on Windows PC - Using ChatGPT Web Midjourney Proxy & using Third-Party ...

KushoAI Launches APIEval-20, the First Open Benchmark for AI API Test Generation

-- No existing benchmark measured whether AI agents can find real API bugs from a schema and payload alone -- 100+ downloads in first week by developers and contributors; freely available on ...
The Hacker News

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

LiteLLM 1.82.7–1.82.8 supply chain attack exposed 33,185 secrets across 6,943 machines, leaving 3,760 valid credentials ...

EnforceAuth Announces Integration NVIDIA OpenShell to Deliver Continuous Authorization Governance AI Agent Deployments

Somewhere in your enterprise, An AI agent is running right now that shouldn’t be.... SAN DIEGO, CA, UNITED STATES, ...