The Hacker News

GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure

GlassWorm poisoned 300 GitHub repositories since 2025, enabling supply chain attacks against developers and organizations.
Analytics India Magazine

GPT-5.5 Beats Claude and Gemini in New Long-Horizon Coding Benchmark

OpenAI’s GPT-5.5 has emerged as the top-performing AI coding model on DeepSWE, a new long-horizon software engineering ...

Automate Complex Tasks with Claude Code’s New JavaScript Workflows

Learn how Claude Code's new workflow feature reduces token tax, improves reliability, and automates complex developer tasks efficiently.
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
The Hacker News

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

Massive regional C2 footprint More than 1.3K C2 Servers Discovered in the Middle East Hunt.io said it identified more than ...
InfoQ

Arm Open-Sources Metis, an AI Security Framework Outperforming Traditional SAST Tools

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
InfoQ

Microsoft Introduces MDASH for Large-Scale AI Vulnerability Research

Microsoft has introduced a new AI-driven vulnerability discovery system called MDASH, a multi-model agentic security platform designed to automate large-scale code auditing across Windows and other ...
Harvard Business Review

What Does Your Company Really Stand For?

Align what matters to you as an organization with what matters to your employees. by Paul Ingram and Yoonjin Choi For years, as scholars of organizational behavior and as corporate consultants, we’ve ...