The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
SecurityWeek

Malicious Chrome Extension Crashes Browser in ClickFix Variant ‘CrashFix’

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...
CSO Online

Flaws in Chainlit AI dev framework expose servers to compromise

Security researchers uncovered two vulnerabilities in the popular Python-based AI app building tool that could allow ...

OpenAI spills technical details about how its AI coding agent works

On Friday, OpenAI engineer Michael Bolin published a detailed technical breakdown of how the company’s Codex CLI coding agent ...

I used GPT-5.2-Codex to find a mystery bug and hosting nightmare - it was beyond fast

I used GPT-5.2-Codex to find a mystery bug and hosting nightmare - it was beyond fast ...

OpenAI releases Prism, a Claude Code-like app for scientific research

OpenAI is releasing a new app called Prism today, and it hopes it does for science what coding agents like Claude Code did ...

Underground Resistance Aims To Sabotage AI With Poisoned Data

Poison Fountain, as their project is called, is intended to trigger a techno-uprising complete with a manifesto and sabotage ...
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

He Leaked the Secrets of a Southeast Asian Scam Compound. Then He Had to Get Out Alive

A source trapped inside an industrial-scale scamming operation contacted me, determined to expose his captors’ crimes—and ...
VentureBeat

The creator of Claude Code just revealed his workflow, and developers are losing their minds

When the creator of the world's most advanced coding agent speaks, Silicon Valley doesn't just listen — it takes notes. "If you're not reading the Claude Code best practices straight from its creator, ...

Open-source AI models vulnerable to criminal misuse, researchers warn

By AJ Vicens Jan 29 (Reuters) - Hackers and other criminals can easily commandeer computers operating open-source large language models outside the guardrails and constraints of the major ...
Nature

Cryptographic Obfuscation and Functional Encryption

Cryptographic obfuscation and functional encryption have emerged as pivotal tools in contemporary cryptography, offering novel ways to secure software and data while preserving functionality. At its ...