The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...

Attackers prompted Gemini over 100,000 times while trying to clone it, Google says

On Thursday, Google announced that “commercially motivated” actors have attempted to clone knowledge from its Gemini AI ...

You can steer ChatGPT deep research with your own sites and apps

ChatGPT deep research is getting easier to use when you care about sourcing as much as answers. OpenAI is rolling out tighter controls that let you steer a research run toward specific websites, pull ...

Are TikTok and X tracking you across the internet? Our privacy tool can tell you

We’ve updated Blacklight, The Markup’s privacy inspector, to help you understand how sites are tracking you.
The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.

Police arrest seller of JokerOTP MFA passcode capturing tool

The Netherlands Police have arrested a a 21-year-old man from Dordrecht, suspected of selling access to the JokerOTP phishing ...
The Information

How OpenAI Uses ChatGPT to Catch ‘Leakers’

Here at The Information, we’re always trying to break through the hype to understand how folks are actually using AI in the ...