The Hacker News

Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

North Korea-linked ScarCruft uses fake Microsoft Account alerts and ZIP files to deliver NarwhalRAT, a Python RAT built for ...
InfoWorld

Cool for you: Python Polars swims through dataframes

Python Polars 1.0.0-rc.1 released One of Python’s coolest dataframe-wrangling libraries—already up to 10x faster than Pandas —just got a whole lot cooler. A JIT compiler for CPython Core Python ...
latesthackingnews.com

LiteLLM Vulnerability Chain: What Security Teams Running AI Gateways Need to Do Now

A three-CVE chain lets any default LiteLLM user escalate to admin and get a shell on the gateway server. A separate RCE is ...

JaredFromSubway MEV bot hacked in $15 million crypto theft

The JaredFromSubway Ethereum MEV (Maximal Extractable Value) bot suffered a $15 million loss after an attacker manipulated ...
Nature

Tech titans are hacking their bodies for a longer life: is there science behind their methods?

Influencers and ultra-rich people looking to extend their lifespan are trading tips and tricks on how to eke out extra years.
Scientific American

Silicon Valley's longevity biohackers are engaged in a dangerous experiment

Influencers and ultra-rich people looking to extend their lifespan are trading tips and tricks on how to eke out extra years ...
The Hacker News

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

ThreatsDay Bulletin covers AI abuse, poisoned packages, phishing, macOS attacks, SD-WAN flaws, scams, and supply-chain ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...