The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...

Nauta Launches Tariff Recovery Module to Help Shippers Calculate Exposure and Accelerate Refund Claims

Nauta, the AI-native operating system for global supply chains, today announced the Nauta Tariff Recovery Module, designed to help shippers automatically calculate tariff exposure and generate a ...

A Reality Check: Three Blind Spots In Executing Real-World AI Agents

There are three critical areas where companies most often go wrong: data preparation and training, choosing tools and specialists and timing and planning.
GovInfoSecurity

Why Claude Code Security Has Shaken the Cybersecurity Market

Anthropic's debut of Claude Code Security jolted cybersecurity stocks and intensified competition in application security ...

Deep Dive Spring Modulith Part 1: Functional Modules in Focus

Spring Modulith supports the development of functionally modularized Spring Boot applications. With Spring Modulith, it is possible to divide Spring Boot applications into functional modules with ...
FinanceFeeds

Mistakes Teams Make With Modular Architecture

One of the features you’ll usually find in blockchain and crypto projects is modular architecture. Instead of designing one large and tightly connected ...

Numina Group Unveils Batchbot 2.0: AI Order Orchestration and Voice Picking for Smarter AMR Fulfillment

AI-powered RDS orchestration synchronizes AMRs and voice picking to deliver goods-to-person performance at a fraction ...

iPipeline Launches AI-First Digital Platform for Life, Annuities and Wealth, Debuting with iGO Evolve®

WAYNE, Pa., February 18, 2026--iPipeline®, a leading global provider of comprehensive and integrated digital solutions for ...

PromptSpy malware uses AI tools and Gemini to hijack Android devices

PromptSpy malware uses AI tools and Gemini to hijack Android devices, locking apps while spying on every action secretly ...

Flaw in Grandstream VoIP phones allows stealthy eavesdropping

A critical vulnerability in Grandstream GXP1600 series VoIP phones allows a remote, unauthenticated attacker to gain root privileges and silently eavesdrop on communications.
Live Bitcoin News

npm Worm Steals Crypto Keys, Targets 19 Packages

A self-replicating npm worm dubbed SANDWORM_MODE hits 19+ packages, harvesting private keys, BIP39 mnemonics, wallet files and LLM API keys from dev environments.