Another npm supply chain worm is tearing through dev environments

Yet another npm supply-chain attack is worming its way through compromised packages, stealing secrets and sensitive data as ...
Hosted on MSN

Moonshot AI's Kimi K2.6 pushes multi‑agent coding to enterprise scale

Moonshot AI has released Kimi K2.6, an open-source large language model with 1 trillion parameters, designed for long-horizon coding and multi-agent orchestration. The model can coordinate up to 300 ...

Critical vulnerability in Ruby's standard library ERB:attackers can execute code

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...
The Hacker News

ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories

ThreatsDay Bulletin: active exploits, supply chain attacks, AI abuse, and stealth data risks observed this week.