The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

Manchester man sentenced to 29 years in jail for explicit photos of children

Drew Holzlein, 57, moderated and participated in a website on the dark web made for the rapid spread of sexually explicit ...

Docs: Henry County man found with over 1,000 CSAM files

Police have arrested a Henry County man allegedly found with thousands of images containing AI-generated child sex abuse ...