Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...

Exclusive: Chainguard extends Repository scanning and policies to Java, Python and containers

Secure software supply chain solution provider Chainguard Inc. today expanded its Chainguard Repository product with malware ...
TMCnet

AgileAI Labs Unveils Spec2TestAI's Natural Language No-Code Automated Testing Tool

Software Development Teams build an end-to-end project knowledge base that self-improves generating enhanced, fully traceable ...
Startup Fortune

Qualcomm is buying Modular for $4 billion to take on Nvidia where it actually counts

Qualcomm is in advanced talks to acquire AI inference and compiler startup Modular Inc. at a $4 billion valuation, Bloomberg ...

7,000 Langflow servers are under attack. LangGraph and LangChain have the same holes

Attackers are actively exploiting path traversal and SQL injection in Langflow, LangGraph, and LangChain — below where your ...
The Hacker News

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

ThreatsDay Bulletin covers AI abuse, poisoned packages, phishing, macOS attacks, SD-WAN flaws, scams, and supply-chain ...
New York Post

Wild video shows alleged drunk driver run from cops — and right into the jaws of an alligator

He took a bite out of crime. A suspected drunk driver fled into a Louisiana swamp after getting pulled over by cops on Sunday — only to run right into the jaws of a surly alligator in a ...
Reuters

Apollo, Blackstone back Anthropic's $35 billion capacity expansion in new Broadcom tie-up

June 9 (Reuters) - Apollo (APO.N), opens new tab and Blackstone (BX.N), opens new tab are financing a $35 billion expansion of AI computing capacity for Anthropic using Broadcom's (AVGO.O), opens new ...
CNBC

Social Security retirement trust fund may be depleted in 2032, new trustees report finds

The Social Security Administration released a new report on Tuesday with fresh projections as to when the trust funds it relies on to help pay benefits may be depleted. The OASI trust fund — formally ...
The Hacker News

Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code

Veeam has released security patches to address a critical flaw in its Backup & Replication software that could result in remote code execution. Tracked as CVE-2026-44963, the vulnerability carries a ...

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...
SportsNet New York

Landry Shamet an unsung hero who can't be ignored in Knicks' incredible playoff run

One player who can’t be ignored in the Knicks' playoff push is Landry Shamet -- now on his second consecutive veteran minimum deal, Shamet's been a major part of their run, despite the bumps and ...