Hoodline

San Antonio AI Researchers Sound Alarm On Phantom Package Trap

UTSA: ~20% of AI-suggested packages don't exist. Slopsquatting could let attackers slip malicious libs into projects.
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
The Hacker News

Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware

Four rogue NuGet packages and one npm package stole ASP.NET Identity data, deployed C2 backdoors, and reached over 50,000 ...
TechPP on MSN

Windows Sandbox: Safely Install and Test Unknown Windows Applications

Use Windows Sandbox to safely install and test unknown apps in an isolated environment. Protect your PC from malware and ...

Classic Resident Evil mutates into a comedy fever-dream through the power of BioRand

As you might have guessed from the name, BioRand is a randomizer mod for the classic, original Resident Evil trilogy, ...