Hackaday

This Week In Security: Messing With AI, 7Zip And Notepad++ Vulnerabilities, HTTP2 Bomb, And More

With the rise of AI coding assistants continuing apparently unabated, some project maintainers have begun striking back. Ars Technica reports on projects putting hostile directions into the ...
Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...

This is our time: Canada’s national AI strategy is an incredible step forward

By targeting the technology’s adoption and empowering homegrown talent, the country can be an innovative global leader ...

The scam industry

With AI and other online tools making it harder to spot scams, experts explain what to look out for and what can be done to ...