New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.

Anthropic’s Claude found 22 vulnerabilities in Firefox in two weeks

The test also showed that Claude is significantly better at finding security flaws than at writing code to exploit them. Despite spending around $4,000 in API credits, the team on ...
The Hacker News

Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model

Anthropic’s Claude Opus 4.6 AI found 22 Firefox vulnerabilities, including 14 high severity, helping Mozilla patch flaws in Firefox 148.

Claude Opus 4.6 Discovers 22 Firefox Vulnerabilities in Just Two Weeks

Claude AI discovered 22 Firefox vulnerabilities in two weeks, including 14 high severity flaws, showing how AI speeds up security research.
PCMag on MSN

Wikipedia Forced to Lock Down Edits Over JavaScript That Could Delete Pages

The nonprofit that oversees Wikipedia briefly enforced a 'read-only' mode on Thursday morning as users spotted code designed ...