GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
The Hacker News

Claude Code Security and Magecart: Getting the Threat Model Right

Magecart hides payload in favicon EXIF via third-party scripts, bypassing static analysis and stealing checkout data at ...
TMCnet

SpecterOps Expands Identity Attack Path Management to Okta, GitHub, and Mac

SpecterOps, creators of BloodHound and leader in identity Attack Path Management (APM), today announced new coverage for Okta ...

Why Garry Tan’s Claude Code setup has gotten so much love, and hate

Thousands of people are trying Garry Tan's Claude Code setup, which was shared on Github. And everyone has an opinion: even ...
TMCnet

ActiveState Launches Curated Catalogs to Neutralize Security Risks in AI-Generated Code

New private repository secures the AI-driven development boom by grounding LLMs in a library of 79 million vetted, ...

Pervaziv AI Launches Cortex 3.0 in Chrome, Edge and Firefox – World’s First Cross-Browser/IDE AI Coding & Security Agent

Cortex 3.0 delivers AI-powered code generation, vulnerability scanning, Enterprise AI & DevSecOps integrations, ...

'No one asked them to': Security experts warn malicious AI agents can team up to launch cyberattacks

Artificial intelligence bots are bypassing security controls, stealing secrets, and causing chaos inside enterprise networks ...

JigsawML Launches Control Plane for AI-Generated Code as Engineering Teams Lose Visibility into What AI Agents Build

World's First Architectural Intelligence Platform Auto-Generates Interactive Architecture Diagrams from Code, Tracking Every AI-Written Change in Real Time BOSTON and SAN FRANCISCO, March 17, 2026 ...
The American Bazaar

AI may replace white-collar jobs, Andrej Karpathy says in deleted viral post

Andrej Karpathy’s AI exposure study reveals risks to white-collar jobs, sparking debate before deletion of viral analysis ...
The Hacker News

Product Walkthrough: How Mesh CSMA Reveals and Breaks Attack Paths to Crown Jewels

CSMA links siloed security tools into attack paths to crown jewels, exposing hidden risks and enabling faster remediation.
The Security Ledger

Exposed Developer Secrets Surge: AI Drives 34% Increase in 2025

AI-driven development fueled a surge in developer secrets leaks last year, with nearly 29m credentials discovered on public ...
Cybernews

Hundreds of code repos falling like dominoes, infected by new wave of self-replicating malware

A massive, self-replicating GlassWorm supply-chain attack has compromised hundreds of code repositories and extensions on ...