Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
Dark Reading

'Cordyceps': Mushrooming Malicious Pull Requests Threaten Developer Workflows

By targeting the automated workflows around repositories with targeted pull requests, attackers can potentially target ...
The Hacker News

Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks

Researchers found Cordyceps CI/CD flaws affecting 300+ repositories, enabling code execution, credential theft, and supply ...

Microsoft fixes AutoGen Studio flaw that enabled code execution

A vulnerability chain dubbed AutoJack in Microsoft's AutoGen Studio interface for prototyping AI agents could let attackers ...
SecurityWeek

Exploitable CI/CD Vulnerabilities Expose Millions of Repositories to Hijacking

Cordyceps, a systemic class of exploitable CI/CD vulnerabilities, allows unauthenticated attackers to hijack developer ...

Edge users beware — this malicious extension can break out of the sandbox and install ransomware

Researchers from Zscaler found a new malware campaign dubbed Edgecution.

Frontline Systems Launches RASON® Desktop: Brings Simulation, Optimization, Decision Intelligence Directly into Power BI

Business users can now determine the best course of action under real-world constraints and uncertainty, with input ...
InfoWorld

Making Windows a developer platform, again

Microsoft is delivering tools to quickly configure Windows PCs as workstations for Windows and Linux development.
Security Boulevard

Microsoft’s ‘New Approach’ to Fighting Malware Nabs Amadey, StealC Infrastructure

Microsoft, international law enforcement, and cybersecurity firms used AI to analyze and shut down the infrastructure used to run campaigns with Amadey and StealC malware in what the IT giant calls a ...

AgileAI Labs Unveils Spec2TestAI's Natural Language No-Code Automated Testing Tool

Addressing the pervasive challenges within the software development lifecycle (SDLC), such as poorly defined requirements, ...
The Hacker News

AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network

AryStinger malware has infected 4,300 Realtek RTL819X routers, using old CVEs to scan targets, tunnel traffic, and hide ...
XDA Developers on MSN

I used Meta Llama 4, Qwen 3-Coder and Gemma 4 to develop a Python app, and only one model is worth keeping for developers

Putting some of the best local models to the development test ...