PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

Why are top university websites serving porn? It comes down to shoddy housekeeping.

Finding hijacked subdomains is straightforward. People need only enter site: [university].edu “xxx” or site: [university].edu ...

Millions of Clicks on Sexual Assault—Where’s The Outrage?

We spend far more time teaching women and girls how not to be harmed than we do teaching men and boys not to harm.

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

Cybercriminals are tricking AI into leaking your data, executing code, and sending you to malicious sites. Here's how.

A LEGO fan vibe-coded a brick-finding tool with Codex

Looking for a better way to pinpoint the precise LEGO bricks he needed, a tech writer turned to OpenAI’s Codex for help.
Hackaday

CAN Bus Analyzer Runs In Your Browser

If you’ve got a modern car, truck, or tractor, it’s probably got a CAN bus or three that is bouncing data all around the ...
Fairbanks Daily News-Miner

Girl Scouts donate to animal shelter using cookie money

A Troop of Daisy Girl Scouts shared a sweet gift with the Fairbanks Animal Shelter last week, donating one-third of their cookie sale profits to items for animals at the shelter. Troop 113, made up of ...
The Hacker News

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

Threat actors are increasingly using HTTP cookies as a control channel for PHP-based web shells on Linux servers and to achieve remote code execution, according to findings from the Microsoft Defender ...