npmx.dev: New website for npm package search

The open-source project npmx is used for fast searching of npm packages. It focuses on UX, displays vulnerability warnings, and offers a dark mode.
Security Boulevard

How Threat Actors Turned OpenClaw Into a Scraping Botnet

How did OpenClaw become botnet infrastructure so quickly? DataDome analyzes the hijacked AI agents scraping sites at scale ...
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 ...

Lawsuit: Google Gemini sent man on violent missions, set suicide “countdown”

A man killed himself after the Google Gemini chatbot pushed him to kill innocent strangers and then started a countdown for ...

Father sues Google, claiming Gemini chatbot drove son into fatal delusion

A father is suing Google and Alphabet, alleging its Gemini chatbot reinforced his son’s delusional belief it was his AI wife ...

Pentagon dispute bolsters Anthropic reputation but raises questions about AI readiness in military

Anthropic’s moral stand on U.S. military use of artificial intelligence is reshaping the competition between leading AI companies but also exposing a growing awareness that maybe chatbots just aren’t ...
IEEE

Javascript Code Simplification And Optimization Based On Hybrid Static and Dynamic Analysis Techniques

Abstract: With the increasing complexity of Web application functions, JavaScript libraries are widely used to improve development efficiency and user experience. However, many applications do not ...

Claude Code rolls out a voice mode capability

Voice mode is designed to streamline the coding experience by letting users interact with Claude Code through spoken commands ...

The AI engine pipeline: 10 gates that decide whether you win the recommendation

AI recommendations are decided upstream. Understand the 10-gate pipeline, where brands fail, and how small improvements ...
eWeek

OpenAI Scoops DoW Deal After Claude's Big Crash

In a 48-hour whirlwind, President Trump ordered every federal agency to ditch Anthropic's Claude chatbot, with Defense ...
Dark Reading

Bug in Google's Gemini AI Panel Opens Door to Hijacking

Attackers could have exploited the vulnerability to escalate privileges, violate user privacy while browsing, and access sensitive resources ...

Checkmk: Highly risky cross-site scripting flaw in network monitoring software

The developers have released updated Checkmk versions. They close a at least highly risky cross-site scripting vulnerability.