The Hacker News

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

While the Windows maker did not attribute the activity to a specific threat actor, the use of VS Code tasks and Vercel ...

As AI reshapes work, Microsoft and UW expand partnership for training, research — and a looming jobs gap

The University of Washington and Microsoft are deepening their partnership with a new effort aimed at preparing Washington ...
Education Week

Microsoft Joins Other Companies in Trying to Fill AI Training Gap in Schools

Other companies and education organizations provide these kinds of communities and resources for their users and members. For ...

Fake Next.js job interview tests backdoor developer's devices

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

Microsoft deletes blog telling users to train AI on pirated Harry Potter books

The blog recommended that users learn to train their own AI models by downloading the Harry Potter dataset and then uploading text files to Azure Blob Storage. It included example models based on a ...

Clipchamp has stopped responding, Illegal Invocation error

While loading or opening a project, if you see Clipchamp has stopped responding, Error: Illegal invocation, reset Clipchamp, delete old cache file, etc.

New Horizons Embeds Microsoft Copilot Training Into Microsoft Office Courses to Accelerate Workplace AI Adoption

Although many organizations now have access to Copilot Chat for Microsoft 365 users, adoption often stalls due to lack of role based guidance. The new training integrates AI instruction directly into ...

Google Chrome ships WebMCP in early preview, turning every website into a structured tool for AI agents

Google and Microsoft's new WebMCP standard lets websites expose callable tools to AI agents through the browser — replacing ...

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Google Ships WebMCP, The Browser-Based Backbone For The Agentic Web

Google ships WebMCP protocol, letting websites expose structured functions to AI agents and reducing computational overhead ...