The Hacker News

Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb

Researchers uncover wormable XMRig campaign using BYOVD exploit and LLM-built React2Shell attacks hitting 90+ hosts.
Make Tech Easier

This Tool Lets Me Open Spreadsheets In The Terminal, And It’s More Useful Than It Sounds

Xleak is a simple terminal tool that lets you open and inspect Excel files instantly, without ever leaving your command line.
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
XDA Developers on MSN

NotebookLM now connects to Claude through MCP, and it's the best research setup I've used

No more tab-hopping.
eWeek

20,000 Flip-Ready Robots Eye Factory Jobs

Turns out the factory of the future doesn't just need a software update... it needs a crash mat. Hangzhou-based Unitree Robotics says it will ship up to 20,000 humanoid robots in ...
PCMag

Warning: Facebook Ads for Free Windows 11 Upgrade Will Infect PCs With Malware

Scammers are preying on Windows 10 users who haven't moved to Windows 11 with ads that urge you to 'Upgrade to Win 11 Pro Today,' antivirus provider Malwarebytes reports.