The Hacker News

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

Malicious Packagist Laravel packages install a cross-platform RAT enabling remote shell access and system reconnaissance via ...
MIT Technology Review

Online harassment is entering its AI era

Scott Shambaugh didn’t think twice when he denied an AI agent’s request to contribute to matplotlib, a software library that he helps manage. Like many open-source projects, matplotlib has been ...
Arizona Daily Star

Arizona task force on missing, murdered Indigenous people faces big hurdles

Jason Chavez acknowledges that members of Gov. Katie Hobbs’ Task Force on Missing and Murdered Indigenous People face a “big ask” — to “reduce and end violence against Indigenous people” in Arizona.
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in pages to attacker‑controlled infrastructure.