The Hacker News

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.
Morning Overview on MSN

Hackers poisoned the PyTorch Lightning AI package and it started stealing credentials the moment you imported it

A single line of Python code was all it took. Developers who ran import lightning after installing versions 2.6.2 or 2.6.3 of ...

Google Photos Changes Again: Leaked Update Redesigns Your Library

A leaked Google Photos update reveals a massive redesign to the app's Collections tab. Here are the proposed changes.

Victim's mom says Escambia schools' AI nudes policy doesn't go far enough

The mother of a teen whose photo was "undressed" using an AI app says a proposed policy doesn't go nearly far enough, wants ...