The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

Another npm supply chain worm is tearing through dev environments

Yet another npm supply-chain attack is worming its way through compromised packages, stealing secrets and sensitive data as ...
The Hacker News

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...

New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...
eWeek

ChatGPT Outage Hits Thousands of Users Worldwide, OpenAI Investigates

ChatGPT outage hits thousands worldwide, disrupting OpenAI services including Codex and APIs as the company investigates and ...
CNX Software

reBot Arm B601-DM – An open-source 6+1 DoF robotic arm for embodied AI and teleoperation applications

Seeed Studio reBot Arm B601-DM is a fully open-source 6-axis robotic arm (plus a parallel gripper) designed to lower the ...
Canadian Mining Journal

FANUC’s CRX-3iA robot targets heavy equipment, mining component tasks

FANUC America has unveiled the CRX-3iA, the newest addition to its collaborative robot lineup that brings unprecedented ...
eWeek

New Gemini Update Personalizes AI Images with Nano Banana, Photo Integration

Google brings personalized AI image creation to Gemini, using Nano Banana 2 and Google Photos to tailor results around each ...

Cloudflare And OpenAI Launch Agent Cloud For Enterprises

Cloudflare expands Agent Cloud with OpenAI GPT-5.4 integration and isolate-based Dynamic Workers, challenging containers as ...

Most enterprises can't stop stage-three AI agent threats, VentureBeat survey finds

How mature is your AI agent security? VentureBeat's survey of 108 enterprises maps the gap between monitoring and isolation — ...
Le Lézard

Vadzo Imaging Explains UVC Compliance: What Plug-and-Play Means for OEM UVC Camera Integration

UVC USB cameras deliver true plug-and-play imaging, combining OEM flexibility with embedded vision capabilities for seamless ...