The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
XDA Developers on MSN

A popular Python library just became a backdoor to your entire machine

Supply chain attacks feel like they're becoming more and more common.
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...
Bloomberg L.P.

China Moves to Curb OpenClaw AI Use at Banks, State Agencies

Chinese authorities moved to restrict state-run enterprises and government agencies from running OpenClaw AI apps on office computers, acting swiftly to defuse potential security risks after companies ...
CNBC

Goldman Sachs taps Anthropic’s Claude to automate accounting, compliance roles

Embedded Anthropic engineers have spent six months at Goldman building autonomous systems for time-intensive, high-volume back-office work. The bank expects efficiency gains rather than near-term job ...
Bloomberg L.P.

Anthropic’s Next Big AI Hit Could Also Bruise the Jobs Market

Parmy Olson is a Bloomberg Opinion columnist covering technology. A former reporter for the Wall Street Journal and Forbes, she is author of “Supremacy: AI, ChatGPT and the Race That Will Change the ...
MLive

Critics protest ICE using DTW, Willow Run airports to deport immigrants

ROMULUS, MI - Since 1942, the Willow Run Airport has stood in Ypsilanti as a small airport suited for freight, corporate and general aviation. Now, critics are criticizing its alleged role in ...
Reuters

Apple, Google strike Gemini deal for revamped Siri in major win for Alphabet

Apple to use Google’s Gemini for Siri, future AI features Tie-up likely to raise questions on Apple's partnership with OpenAI Google’s valuation hits $4 trillion on AI momentum and optimism Jan 12 ...