Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

I've reviewed every PDF editor out there - then I had ChatGPT build me a better one

The smartest way to use AI may not be letting it interact with your files, but asking it to write software that handles them ...
WeLiveSecurity

OceanLotus: From external espionage to domestic targeting

Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to external operations ...
Hackaday

The Winners Of The 2025 Obfuscated C Code Contest

One of the most exciting challenges available to any software developer is that of writing brilliantly working code that’s so obtuse, so indecipherable, and opaque, that even its own author ...
Indiatimes

Microsoft tells engineers to stop using Anthropic's Claude, as canceling Claude Code licenses becomes an easy way to…

Microsoft is canceling most internal Claude Code licenses by June 30, pushing engineers to its own GitHub Copilot CLI. The catch? Anthropic's tool got too popular, undercutting Microsoft's homegrown ...
PC Magazine

Want to Vibe Code? Use ChatGPT Instead of Claude

I vibe coded with both Claude and ChatGPT, and the latter is just the better tool right now. It causes fewer headaches and generates more reliable results. I’ve been writing about consumer technology ...
Microsoft

CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments

Microsoft Defender is investigating a high-severity local privilege escalation vulnerability (CVE-2026-31431) affecting multiple major Linux distributions including Red Hat, SUSE, Ubuntu, and AWS ...
PC World

Linux ‘Copy Fail’ flaw lets anyone hijack system privileges. Update ASAP

PCWorld reports that a critical Linux vulnerability called ‘Copy Fail’ (CVE-2026-31431) allows unprivileged users to hijack system privileges by altering cached files. This straight-line logic flaw ...
The Verge

Severe Linux Copy Fail security flaw uncovered using AI scanning help

Some distributions have already released patches or mitigations for the exploit, including Arch Linux and RedHat Fedora. Some distributions have already released patches or mitigations for the ...
The Hacker News

New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions

Cybersecurity researchers have disclosed details of a Linux local privilege escalation (LPE) flaw that could allow an unprivileged local user to obtain root. The high-severity vulnerability tracked as ...
The New York Times

Anthropic’s Leaked Code Tests Copyright Challenges in A.I. Era

Artificial intelligence tools are making it faster than ever to reproduce creative work. Does copyright even matter anymore? By Meaghan Tobin Reporting from Taipei, Taiwan Sigrid Jin was waiting to ...
NBC News

Anyone can code with AI. But it might come with a hidden cost.

Anyone can code using AI. But it might come with a hidden cost. Subscribe to read this story ad-free Get unlimited access to ad-free articles and exclusive content. Over the past year, AI systems have ...