Cybernews

Critical Adobe Reader zero-day lets PDFs steal files, may have been active for months

A newly discovered Adobe Reader zero-day vulnerability allows malicious PDF files to steal local data and potentially lead to ...

The File System’s Role In Governing Agentic AI Context

Model Context Protocol (MCP) is an open standard allowing AI agents to securely connect to external tools and data sources ...

AI Governance Is Failing—The Problem Is Your Documents

Without proper control over enterprise content, AI agents use information sources that are obsolete or wrong, and they do it ...
CSO Online

Vim and GNU Emacs: Claude Code helpfully found zero-day exploits for both

A simple prompt sent Claude Code on a mission that uncovered major security vulnerabilities in popular text editors — and ...

Claude Code source leak reveals how much info Anthropic can hoover up about you and your system

For those who recall the debate surrounding Microsoft Recall not long ago, Claude Code's capture of activity is similar.

GIGABYTE Control Center vulnerable to arbitrary file write flaw

The GIGABYTE Control Center is vulnerable to an arbitrary file-write flaw that could allow a remote, unauthenticated attacker ...

Claude AI finds Vim, Emacs RCE bugs that trigger on file open

Vulnerabilities in the Vim and GNU Emacs text editors, discovered using simple prompts with the Claude assistant, allow ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...

After months of dash cam testing, this is the most reliable one I always keep in my car

We tested 8 popular dash cams to see which performed the best with storage space, video clarity and ease of use. We found ...

How to build a custom GPT for business (that your team actually uses)

Most GPTs fail because they’re too broad and under-tested. Here’s how to build focused, high-ROI GPTs your team adopts and uses every week ...
The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.