The Hacker News

Claude Code Source Leaked via npm Packaging Error, Anthropic Confirms

Anthropic on Tuesday confirmed that internal code for its popular artificial intelligence (AI) coding assistant, Claude Code, had been inadvertently released due to a ...
theregister

Supply chain blast: Top npm package backdoored to drop dirty RAT on dev machines

The poisoned versions, "[email protected]" and "[email protected]," made it onto the npm registry before being yanked, though not before some unlucky devs and CI pipelines pulled them in. Rather than tampering ...
IEEE

Automatic Fixing of Missing Dependency Errors

Abstract: Many build systems, such as Make, rely on build scripts that are written by users to specify dependencies. As a serious dependency error in Makefiles ...
Bleeping Computer

Shai-Hulud 2.0 NPM malware attack exposed up to 400,000 dev secrets

The second Shai-Hulud attack last week exposed around 400,000 raw secrets after infecting hundreds of packages in the NPM (Node Package Manager) registry and publishing stolen data in 30,000 GitHub ...
Science Daily

Blood pressure cuff errors may be missing 30% of hypertension cases

Cambridge scientists have cracked the mystery of why cuff-based blood pressure monitors often give inaccurate readings, missing up to 30% of high blood pressure cases. By building a physical model ...
Daily News Hungary

Critics: Orbán’s Tusványos speech full of omissions, distortions, errors – Substance ...

True to form, Orbán centred his address on themes he’s emphasised in recent years: war, gender issues, and migration. Political analyst Lakner Zoltán observed that these topics signal the PM’s focus ...
Bleeping Computer

New wave of ‘fake interviews’ use 35 npm packages to spread malware

A new wave of North Korea's 'Contagious Interview' campaign is targeting job seekers with malicious npm packages that infect dev's devices with infostealers and backdoors. The packages were discovered ...