The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
The Hacker News

OpenClaw Integrates VirusTotal Scanning to Detect Malicious ClawHub Skills

OpenClaw (formerly Moltbot and Clawdbot) has announced that it's partnering with Google-owned VirusTotal to scan skills that are being uploaded to ClawHub, its skill marketplace, as part of broader ...
GitHub

garak, LLM vulnerability scanner

garak checks if an LLM can be made to fail in a way we don't want. garak probes for hallucination, data leakage, prompt injection, misinformation, toxicity generation, jailbreaks, and many other ...
GitHub

FTP Hunter is a tool for scanning FTP servers and detecting sensitive files.

FTP Hunter is a powerful and efficient tool designed for scanning FTP servers and detecting sensitive files. It provides a detailed directory tree of the FTP server and highlights potentially ...
The New York Times

How ICE Already Knows Who Minneapolis Protesters Are

Agents use facial recognition, social media monitoring and other tech tools not only to identify undocumented immigrants but also to track protesters, current and former officials said. By Sheera ...
The Bookseller

Unredacted files reveal Anthropic’s ‘secret plan’ to ‘destructively scan all the books in the world'

A number of newly unredacted and partially redacted documents from the Anthropic case have shed light on how executives at the tech giant apparently ramped up plans in early 2024 to scan “all the ...