Dark Reading

'Djinn' Stealer Targets Cloud, AI Credentials

The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.

SimpleHelp Flaw Exploited to Deploy Malware Targeting Windows, macOS, and Linux

A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
The Hacker News

145 Mastra npm Packages Compromised via Hijacked Contributor Account

Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.
Bleeping Computer

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub. Miasma appears to be an evolution ...

Trump administration close to allowing Anthropic to restore Fable 5 model, according to reports

Anthropic abruptly disabled its most advanced AI models for all users after U.S. government’s June 12 export control order ...

Are Your Pages Ready For AI Search? The Metrics CMOs Should Watch

To meet the moment, brand leaders need to answer two questions: Are my pages optimized for AI search? If not, what can I do?​ ...

Xiaomi's HarnessX rewrites its own AI scaffolding mid-task — and smaller models gain the most

Xiaomi's HarnessX autonomously rewrites AI agent harnesses mid-execution, delivering +14.5% avg performance gains — and +44% ...
The Hacker News

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

Microsoft details AutoJack exploit chain targeting AutoGen Studio MCP WebSocket in pre-release builds, enabling ...
AARP

AARP Poll: Ohio Moves Toward Swing State Status, and Older Voters May Tip the Balance

AARP Rewards %{points}% Help Register Login Hi, %{firstName}% Games Car rental AARP daily Crossword Puzzle Ohio races are ...
Infosecurity Magazine

Microsoft Attributes Mastra AI Supply Chain Attack to North Korea

North Korean threat actor Sapphire Sleet has been linked to a supply chain attack targeting Mastra, according to Microsoft ...

Anthropic's Claude Code Artifacts update brings live, shared dashboards and interactive workspaces to enterprises

By turning the terminal into a live, collaborative canvas, Anthropic is proving that the most valuable output of an AI coding ...

Accounts payable fraud: Red flags and mitigation tactics

The accounts payable (AP) department is one of the most vulnerable areas of fraud for any business. As the central hub for a company’s outgoing funds, AP is a common target for bad actors looking to ...