Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.
Only one of them felt like something I actually want to open every day ...
Attackers exploited Langflow vulnerability CVE-2025-3248 to conduct an agentic AI-powered ransomware attack involving reconnaissance, credential theft, and lateral movement.
Meta's new Pocket app lets users create and share interactive mini-games using plain text prompts, making vibe coding ...
This AI research tool saved me hours organizing technical notes, but it has one fatal flaw at scale.
JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.