Wired

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

A so-called software supply chain attack, in which hackers corrupt a legitimate piece of software to hide their own malicious code, was once a relatively rare event but one that haunted the ...
VentureBeat

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed on May 20 that a poisoned VS Code extension installed on an employee’s device gave attackers access to roughly 3,800 internal repositories at the Microsoft-owned code storage and ...
Bleeping Computer

JDownloader site hacked to replace installers with Python RAT malware

The website for the popular JDownloader download manager was compromised earlier this week to distribute malicious Windows and Linux installers, with the Windows payload found deploying a Python-based ...
Business Wire

Polymarket Selects Chainalysis to Deploy First-of-Its-Kind On-Chain Market Integrity Solution

NEW YORK--(BUSINESS WIRE)--Polymarket, the world's largest prediction market, today announced that it selected Chainalysis, the blockchain data platform, to help deploy a first-of-its-kind on-chain ...
Ars Technica

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a vulnerability in the developers’ account workflow that gave access to its signing keys ...
Engadget

The NSA is reportedly using Anthropic's new model Mythos

Despite the months-long feud between Anthropic and the Pentagon, the National Security Agency is using the AI company's new Mythos Preview, according to Axios, which spoke to two sources with ...
Reuters

US security agency is using Anthropic's Mythos despite blacklist, Axios reports

April 19 (Reuters) - The United States National Security Agency is using Anthropic's Mythos Preview AI tool despite ‌the Pentagon hitting the company with a formal supply-chain risk designation, Axios ...
The New York Times

China Imposes New Rules to Block Foreign Companies From ‘Decoupling’

Multinationals in China are concerned that the regulations could allow authorities to penalize companies and executives for shifting supply chains away from the country. By Keith Bradsher Reporting ...
IEEE

Exploring High Efficiency PCSELs Using Probabilistic Markov Chain Model

Abstract: In this work, device designs to improve the power conversion efficiency of PCSELs are analyzed by a probabilistic Markov chain model. Critical comparison of total parasitic loss, output ...
Democracy Now

Speeding Up the “Kill Chain”: Pentagon Bombs Thousands of Targets in Iran Using Palantir AI

As the U.S.-Israeli war on Iran continues, we look at how the Pentagon is using artificial intelligence in its operations. The system, known as Project Maven, relies on technology by Palantir and also ...
Ars Technica

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...
New York Post

Anthropic would ‘pollute’ US military supply chain, Pentagon official says

The Pentagon cut ties with Anthropic because use of its artificial intelligence models would “pollute” the US military’s supply chain, a top War Department official claimed Thursday. Emil Michael, the ...