The Hacker News

Investigating a New Click-Fix Variant

New ClickFix variant maps WebDAV drive to run trojanized WorkFlowy app, enabling stealth C2 beacon and payload delivery.

Y Combinator-backed Random Labs launches Slate V1, claiming the first 'swarm-native' coding agent

When a worker thread completes a task, it doesn't return a sprawling transcript of every failed attempt; it returns a compressed summary of the successful tool calls and conclusions.
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...
ExtremeTech

Microsoft Fixes Windows 11 Bug That Let Attackers Run Remote Code in Notepad

Share on Facebook (opens in a new window) Share on X (opens in a new window) Share on Reddit (opens in a new window) Share on Hacker News (opens in a new window) Share on Flipboard (opens in a new ...
The Verge

Microsoft fixes Notepad flaw that could trick users into clicking malicious Markdown links

Bad actors could use the flaw to remotely load and execute malicious files on a victim’s computer. Bad actors could use the flaw to remotely load and execute malicious files on a victim’s computer. is ...
9to5Mac

Apple TV Remote comes to the Mac with this new, free app

Apple offers an Apple TV Remote app on iPhone, iPad, and even Apple Watch—but not the Mac. So one developer created his own solution: Itsytv, a new macOS app for controlling your Apple TV. Itsytv is a ...
TechRepublic

10K Claude Desktop Users Exposed by Zero-Click Vulnerability

A newly disclosed flaw in Anthropic’s Claude Desktop Extensions shows how a routine productivity feature can enable zero-click system compromise. LayerX researchers found that a single malicious ...
Yahoo

Fact Check: Contextualizing claim Indiana HB 1119 would have allowed death row gas chambers, firing squad if passed

Indiana lawmakers tried to pass legislation that would allow the state to execute people using nitrogen gas or a firing squad. What's Undetermined: The legislation failed to pass. If it had become law ...
SecurityWeek

N8n Vulnerabilities Could Lead to Remote Code Execution

The two bugs impacted n8n’s sandbox mechanism and could be exploited via weaknesses in the AST sanitization logic. Two critical- and high-severity vulnerabilities in the n8n AI workflow automation ...
Visual Studio Magazine

Hands-On Comparison: Building a Dynamic Web App in VS Code and Google Antigravity with Prompts Only

This dynamic test added server-side logic, persistence across restarts, session-based admin auth, and a post-build refactor, going beyond static page generation. Both environments required repeated ...
Labroots

Juno spacecraft reveals thickness of Europa's ice shell

How thick is the ice shell on Jupiter’s moon, Europa? This is what a recent study published in Nature Astronomy hopes to address as a team of scientists revealed groundbreaking insights into Europa’s ...
Dark Reading

DPRK Actors Deploy VS Code Tunnels for Remote Hacking

A spear-phishing campaign by North Korean actors is abusing a legitimate feature of Microsoft Visual Studio (VS) Code to gain full remote control of targeted systems. In the campaign, discovered by ...