The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.
TechCrunch

Google turns Chrome into an AI coworker for the workplace

As part of its slate of Google Cloud Next announcements on Wednesday, the company shared plans to bring “auto browse” agentic ...
ZDNet

Google brings Auto Browse and Skills to Chrome Enterprise - and a new 'Gemini Summary'

I wore the world's first HDR10 smart glasses TCL's new E Ink tablet beats the Remarkable and Kindle Anker's new charger is ...
CNET

I'm a Smart Home Expert. Here Are 3 Easy Automations I Find Particularly Useful

Overwhelmed by all the automation possibilities your smart gadgets offer? You're not alone. Here are three I find useful and ...
MIT Technology Review

Agent orchestration

Instead of lone-wolf bots carrying out single tasks, such as using a browser to make a restaurant reservation or sending you ...

New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.