The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

From GPT-5.5 to DeepSeek V4: How Developers Are Building Smarter AI Agents with Multi-Model Routing in 2026

SINGAPORE, SINGAPORE, SINGAPORE, April 26, 2026 /EINPresswire.com/ -- April 2026 was the most intense month in the ...
Developer Tech

Check Point: AI coding assistants are leaking API keys

Check Point researchers have found that popular AI coding assistants are unintentionally leaking sensitive internal data, ...
CoinDesk

Hack at Vercel sends crypto developers scrambling to lock down API keys

Breach tied to compromised AI tool may have exposed credentials used by app frontends, the user-facing layer that connects ...
BeInCrypto

What Are Pre-IPO Tokens? How Tokenized Private Equity Works

Pre-IPO tokens give retail investors fractional exposure to private companies like SpaceX. Learn how they work, the risks, and where to buy them.

New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
Cryptopolitan on MSN

More users enter impact radius of Vercel exploit

The April 2026 Vercel security incident continues to extend past initial claims. The incident, which was said to involve what ...

Vercel breach exposes the OAuth gap most security teams cannot detect, scope or contain

A Vercel employee's AI tool OAuth grant gave attackers access to internal systems via a four-hop kill chain. Here's what ...
Analytics India Magazine

DeepSeek Releases V4 Pro, Challenging OpenAI, Anthropic on Key Benchmarks

Chinese AI startup DeepSeek has launched its next-generation flagship model family, DeepSeek-V4. It has introduced two ...

New GoGra malware for Linux uses Microsoft Graph API for comms

A Linux variant of the GoGra backdoor uses legitimate Microsoft infrastructure, relying on an Outlook inbox for stealthy ...

​OpenAI launches new artificial intelligence model GPT- 5.1 with improved token usage

OpenAI has launched GPT-5.5, boasting significant advancements in reasoning, coding, and scientific research. The new model ...

How DeepSeek 4’S Massive 1M Token Context Window is Changing Open-Source AI

Discover how DeepSeek 4 rivals closed-source AI in 2026 with open weights, reduced FLOPs, and advanced hardware validation on ...