Four AI supply-chain attacks in 50 days exposed the release pipeline red teams aren't covering

Four supply-chain attacks hit OpenAI, Anthropic, and Meta in 50 days — none inside the model. A 7-row matrix maps what AI ...

Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...
Cryptopolitan

Mistral AI and TanStack hit in supply chain attack with SLSA-attested malware

Attackers compromised the official Mistral AI Python package on PyPI along with hundreds of other widely-used developer packages, exposing GitHub tokens, ...

Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering ...
The Hacker News

Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...
CoinDesk

Litecoin hit by denial-of-service attack, rewrites 13 blocks to reverse effect

A 13-block chain reorganization on LTC $58.42 late Friday and Saturday rewound roughly 32 minutes of network activity after attackers used a vulnerability in its Mimblewimble Extension Block (MWEB) ...
Rolling Stone

Peter Hook Won’t Completely Rule Out a New Order Truce at Rock Hall: ‘Life’s Full of Surprises’

The second the news dropped that Joy Division/New Order were finally entering the Rock & Roll Hall of Fame, fans began speculating about what might happen the night of the induction ceremony. New ...
Geeky Gadgets

How Top Engineers Stop AI Slop : Hooks, Gates & Hard Blocks

AI-generated code often mirrors the quality of the processes guiding it, making structured workflows and proactive oversight essential for success. In a detailed walkthrough, Jaymin West explores how ...