The Hacker News

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

Three vulnerabilities in Anthropic’s MCP Git server allow prompt injection attacks that can read or delete files and, in some ...

FBI warns QR code phishing used in North Korean cyber spying

The North Korean hacking group Kimsuky is using QR code phishing to target Americans with fake questionnaires and malicious ...
CSO Online

Contagious Interview turns VS Code into an attack vector

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

Anthropic launches Claude Cowork, a file-managing AI agent that could threaten dozens of startups

The new tool brings Claude Code's capabilities to non-technical users, positioning Anthropic to compete with productivity ...

Target Hack Claims Surface as Source Code Allegedly Listed for Sale Online

Hackers claim stolen Target source code is being sold online after sample files appeared on public repositories.
CSO Online

Flaws in Chainlit AI dev framework expose servers to compromise

Security researchers uncovered two vulnerabilities in the popular Python-based AI app building tool that could allow ...

Hackers claim to have Target source code for sale following cyberattack

Hackers are apparently selling internal source code stolen from American retail giant Target. A previously unknown threat ...
The Hacker News

Why Secrets in JavaScript Bundles are Still Being Missed

Scanning 5M apps uncovered 42K exposed secrets in JavaScript bundles, revealing major gaps in traditional SAST, DAST, and ...

Claude Cowork explained: Anthropic’s new agent that is in your files

For years, AI has been something you talk to in a chat box – a disembodied voice that can write essays or debug code but ...

Saks Files for Bankruptcy as Department Stores Fight for Survival

The parent company of Saks, Neiman Marcus and Bergdorf Goodman struggled with debt, designers and customers in recent years.

Visual Studio Code 1.108: Import profiles via drag & drop

The first release of the year experiments with Agent Skills, simplifies profile importing, and clears thousands of open ...

Nightfall Unveils AI Browser Security Solution to Stop Data Exfiltration in Real Time

Nightfall today announced the launch of its AI Browser Security solution, designed to stop real-time data exfiltration through AI tools, AI-powered browsers, and modern web workflows that legacy data ...