OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in pages to attacker‑controlled infrastructure.

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT via 31 Vercel deployments.

Are AGENTS.md files actually helping your AI coding agents, or are they making them stupider? We dive into new research from ETH Zurich, real-world experiments, and security risks to find the truth ...

There are moments in the evolution of a nation when a single incident, seemingly isolated, exposes a deeper and more troubling ...

还在纠结 Claude Code 的各种“黑魔法”怎么玩？Command、Subagent、Skills 到底有什么区别，各自适合什么场景？新出来的 Programmatic Tool Calling 又是啥，真的能提升「代码质量 + 开发效率」吗？因为一个工具不得不搭梯子，有没有体验接近、甚至更灵活的「平替」方案？本次分享将带你彻底搞懂～Claude Code ...

While the Windows maker did not attribute the activity to a specific threat actor, the use of VS Code tasks and Vercel domains to stage malware is a tactic that has been adopted by North Korea-linked ...

Discover OpenFang, the Rust-based Agent Operating System that redefines autonomous AI. Learn how its sandboxed architecture, pre-built "Hands," and security-first design outperform traditional Python ...

The Arkanix Stealer malware can collect and exfiltrate system information, browser data, VPN information, and arbitrary files ...

Xleak is a simple terminal tool that lets you open and inspect Excel files instantly, without ever leaving your command line.

A sophisticated Python-based malware deployment uncovered during a fraud investigation has revealed a layered attack involving obfuscation, disposable infrastructure and commercial offensive tools.

The Arkanix infostealer combines LLM-assisted development with a malware-as-a-service model, using dual language implementations to maximize reach and establish persistence.

☁️ GitHub Gist Integration: Store and manage scripts in GitHub Gists for easy sharing and versioning. 🔄 Simple Script Management: Run, update, edit, list, and delete your scripts with simple commands ...