The Hacker News

Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens

Malicious StripeApi.Net package on NuGet mimicked Stripe.net, logged 180,000 downloads, and stole Stripe API tokens before removal.
The Hacker News

Malicious Go Crypto Module Steals Passwords, Deploys Rekoobe Backdoor

A fake Go module posing as golang.org/x/crypto captures terminal passwords, installs SSH persistence, and delivers the ...

Ring Programming Language Expands with Major Package Contributions from Developer Youssef Saeed

Ring Team Announces Significant New Contributions by Developer Youssef Saeed Youssef’s contributions, creativity, and ...
CSO Online

New Arkanix stealer blends rapid Python harvesting with stealthier C++ payloads

The Arkanix infostealer combines LLM-assisted development with a malware-as-a-service model, using dual language implementations to maximize reach and establish persistence.
eWeek

OpenAI Just Showed That AI Can Drain a Crypto Wallet… on Purpose

Codex can exploit vulnerable crypto smart contracts 72% of the time, raising urgent questions about AI-powered cyber offense and defense.
NDTV

Woman Uses Rapido To Send Sealed Package, Delivery Agent Stunned By What He Found

A Rapido delivery partner in Lucknow was hired to transport household garbage. The customer paid online and asked the driver to dump the sealed box in a garbage dump. The driver expressed disbelief at ...
NDTV

Google Offers Voluntary Exit Packages To Employees Not 'Embracing' AI

Amid the ongoing mass layoffs in the tech sector, Google has offered voluntary exit packages (VEP) to some employees in its business unit. In an email sent to Google employees, called Googlers, on ...
heise online

Go 1.26 brings more flexible syntax and faster garbage collector

The Go team has released version 1.26 of the Go programming language. The release refines the language, enables a new garbage collector by default, and modernizes core tools. The built-in new function ...