The Hacker News

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across developer systems.
InfoWorld

The ‘toggle-away’ efficiencies: Cutting AI costs inside the training loop

You don't need the newest GPUs to save money on AI; simple tweaks like "smoke tests" and fixing data bottlenecks can slash ...

AI Agents Run Experiments While You Sleep, So What Should Knowledge Workers Do?

Karpathy's autoresearch and the cognitive labor displacement thesis converge on the same conclusion: the scientific method is ...

Oracle unveils Project Detroit for faster Java interop with JavaScript and Python

JavaOne Oracle has shipped Java 26, a short-term release, and introduced Project Detroit, which promises faster interop between Java, JavaScript, and Python. Java 26 will be supported for just six ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.

AI helps novice threat actor compromise FortiGate devices in dozens of countries

Generative AI tools analyzed target networks and wrote exploit code, enabling an opportunistic attacker to have an outsized ...
AOL

Shocking hit-and-run caught on camera in LA after speeding driver swerves into hard shoulder and mows down skater

Dashcam footage captures the moment a skateboarder was struck by a hit-and-run driver in Los Angeles. Los Angeles Police Department is looking for the motorist who swerved into a hard shoulder and ...
NJ.com

N.J. woman dies after being struck by 2 vehicles in hit-and-run crash

An Essex County woman died Friday when she was struck by two vehicles — including one whose driver fled — after stepping off a New Jersey Transit bus in Caldwell, authorities said. Sharon Thomas, 56, ...
CNBC

Apple picks Google's Gemini to run AI-powered Siri coming this year

Apple is teaming up with Google to use Gemini models for an AI-powered Siri. Reports swirled in August that Apple was in early talks with the search giant to use a custom Gemini model to power a new ...