The Hacker News

Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2

Tropic Trooper used trojanized SumatraPDF and GitHub C2 in 2024 to deploy AdaptixC2, enabling covert VS Code tunnel access.

Visual Studio Code 1.117: Enterprise customers can use their own LLM keys

Business and enterprise users can now connect their own API keys to use LLMs via OpenRouter, Ollama, Google, OpenAI, and more ...
DataBreachToday

Flurry of Supply-Chain Software Library Attacks

As supply-chain attacks against widely-used, open-source software repositories continue, experts are urging developers to not ...
SecurityWeek

Bitwarden NPM Package Hit in Supply Chain Attack

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

CodeRabbit Launches Slack Agent, a Second Brain for Teams

New product line extends CodeRabbit's purpose-built, high-performance context engine from AI code review into Slack, where ...

Sparfuchs Corporation Releases Sparfuchs-QA: An Open-Source, Agentic QA Platform for Modern Engineering Teams

Sparfuchs Corporation today announced the public release of Sparfuchs-QA, an open-source software quality assurance platform ...

The AI Subscription Buffet May Not Last Much Longer

The AI subscription buffet may still be open, but the plates are getting smaller, the premium dishes are moving behind higher ...
Security Boulevard

Bitwarden CLI Compromise Linked to Ongoing Checkmarx Supply Chain Campaign

The compromise of a version of Bitwarden's CLI is connected to the ongoing Checkmarx supply chain campaign, but differences in the operational methods of both incidents are making it difficult to ...

AI Upgrades, Security Breaches, and Corporate Shakeups Define the Week in Tech

AI breakthroughs, chip wars, security breaches, robots, privacy concerns, and corporate shakeups defined a week where tech’s ...

GPT-5.5 launched: OpenAI says ChatGPT can now debug code and operate software

OpenAI has launched its GPT-5.5 model, claiming it is its most intuitive AI yet.The AI mdoel comes with improved efficiency, ...

GitLab Deepens AWS And Google Cloud Ties For AI DevSecOps Growth

GitLab (NasdaqGS:GTLB) expanded its collaboration with Amazon Web Services to support the GitLab Duo Agent Platform using ...

Anthropic says Claude Code did get worse — but shoots down speculation it 'nerfed' the model

If you were one of the users complaining that Claude Code has sucked lately, Anthropic just confirmed it wasn't all in your ...