Automation tool n8n: Updates patch code injection flaws

In the automation tool n8n, eleven security vulnerabilities have been discovered. Three of these are considered critical ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
The Hacker News

ClawJacked Flaw Lets Malicious Sites Hijack Local OpenClaw AI Agents via WebSocket

OpenClaw patches ClawJacked flaw, log poisoning bug, and multiple CVEs as 71 malicious ClawHub skills spread malware and ...

Bill Gates’ Daughter Says Her $185 Million AI Startup Will Succeed Entirely Due to Her Merits, Not Even a Little Bit Who Her Dad Is

Against all odds, Phoebe Gates has managed to raise $35 million for a browser extension, despite the pernicious disadvantage ...
CSO Online

VMware fixes command injection flaw in Aria Operations

Two other flaws were patched by the virtualization vendor, impacting Cloud Foundation, Telco Cloud Platform, and Telco Cloud Infrastructure as well.

When Do You Need to Call a Tree Doctor?

You probably aren’t watering or pruning the 75-foot oak or maple in the front yard, but mature trees aren’t maintenance free.
WISH-TV on MSN

New records show additional Indiana dollars paid for last round of execution drugs

Indiana has spent at least $1.275 million on execution drugs since 2024, with the state's Department of Correction storing some of the drugs for up to 10 months before their use, raising questions ...
CSO Online

Shai-Hulud-style NPM worm hits CI pipelines and AI coding tools

Researchers warn malicious packages can harvest secrets, weaponize CI systems, and spread across projects while carrying a ...

Last day of the 2026 legislative session

The 2026 legislative session is coming to an end, and the Indiana Capital Chronicle team will bring you everything from the ...