Microsoft

Detecting backdoored language models at scale

Learn how Microsoft research uncovers backdoor risks in language models and introduces a practical scanner to detect ...
ExtremeTech

Notepad++ Says Chinese-State Hackers Spent Half a Year Hijacking Its Software Updates

Notepad++ released version 8.8.9 in December, which checks digital signatures and certificates before installing any updates.
PCMag

You Can Now Vibe Code Apple Apps With Claude, OpenAI's Codex

With Xcode 26.3, Apple adds support for two of the most popular agentic AI coding tools after failing to release the ...
The Register on MSN

Nitrogen ransomware is so broken even the crooks can't unlock your files

Gang walks away with nothing, victims are left with irreparable hypervisors Cybersecurity experts usually advise victims ...
C-VILLE Weekly

A UVA Health team enlists bacteria to build better, faster virus-fighting vaccines

Pick two.” But a team from the University of Virginia School of Medicine has discovered a way to make vaccines that embrace ...

Moltbot is now OpenClaw - but watch out, malicious 'skills' are still trying to trick victims into spreading malware

OpenClaw, formerly Clawdbot and Moltbot, faces malware attacks as fake skills and extensions exploit trust in local AI tools.
Infosecurity Magazine

Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw

A security researcher found 386 malicious ‘skills’ published on ClawHub, a skill repository for the popular OpenClaw AI assistant project ...

AI agents plus Terminal access equals a macOS security mess

AI agents that can run commands on a Mac are now being used to install malware, although the simplest way to avoid it is not ...

Moltbook, the viral social media site for AI bots, contains a ‘lethal trifecta’ for how the agent internet could fail, security researchers say

If toy agents on a Reddit clone can create this much chaos, what happens when agentic systems manage enterprise infrastructure or financial transactions?" ...
CSO Online

Notepad++ infrastructure hijacked by Chinese APT in sophisticated supply chain attack

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

The rise of Moltbook suggests viral AI prompts may be the next big security threat

History may soon repeat itself with a novel new platform: networks of AI agents carrying out instructions from prompts and sharing them with other AI agents, which could spread the instructions ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to distribute credential‑stealing payloads.