News

Hackaday13h

This Week In Security: NPM, Kerbroasting, And The Rest Of The Story

Two billion downloads per week. That’s the download totals for the NPM packages compromised in a supply-chain attack this week. Ninety-nine percent of the cloud depends on one of the ...

This 'critical' Cursor security flaw could expose your code to malware - how to fix it

A feature being disabled by default could leave users and their organizations vulnerable to commands that run automatically.
Education Week8h

AI Can Generate Code. Is That a Threat to Computer Science Education?

While computer science education experts acknowledged the uncertainty of the job market right now, they argued it’s still ...

CISA warns of actively exploited Dassault RCE vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of hackers exploiting a critical remote code execution flaw in DELMIA Apriso, a manufacturing operations management (MOM) ...
Cyber Security Intelligence19h

AI-Powered Phishing Compromises Open-Source Downloads

The attack's genesis traces back to npm maintainer Josh Junon, known online as "qix," who fell victim to an AI-generated phishing email. According to the report, attackers crafted emails that evaded ...
Hackaday5h

Running Code On A PAX Credit Card Payment Machine

These days Points of Sale (PoS) usually include a digital payment terminal of some description, some of which are positively small, such as the Mini PoS terminals that PAX sells. Of course, since ...

I did 24 days of coding in 12 hours with a $20 AI tool - but there's one big pitfall

Professional coders pay hundreds monthly for AI assistance. Can a $20 ChatGPT Plus plan with Codex access rival these premium tools? I decided to find out, and 16x'ed my programming output in the ...
Cars and Horsepower12h

Right to Repair: Do You Really Own Your Car If You Can’t Hack Its Software?

Car hacking vs. automaker control—explore the fight over ECU locks, DRM, and the Right to Repair. Who truly owns your car: ...