malware
22 articles about malware in AI news
Axios NPM Package Under Active Supply Chain Attack, Potentially Impacts 100M+ Weekly Installs
The widely-used JavaScript HTTP client library Axios may be compromised via a malicious dependency in its latest release, exhibiting malware-like behavior including shell execution and artifact cleanup. With over 100 million weekly downloads, this represents a critical software supply chain threat.
OpenAI Launches Daybreak Cyber Initiative to Rival Anthropic's Glasswing
OpenAI launched Daybreak, a cybersecurity initiative using GPT-5.5 and Codex Security, to rival Anthropic's Glasswing project.
Trojan Masquerading as Claude Code Tops Google Search, Infects Users
A Trojan impersonating Claude Code ranked #1 on Google. Windows Defender caught it as Trojan:Win32/Kepavll!rfn. The victim had 30 years of internet experience.
Skills as Untrusted Code: A Security Precedent for Agent Runtimes
Paper argues agent skills are untrusted code until verified; runtimes must enforce verification gates to prevent supply-chain attacks, echoing decades of software security lessons.
Gas-Fueled AI Data Centers Could Emit More Than Entire Nations
WIRED investigation reveals 11 behind-the-meter natural gas projects for AI data centers could emit 129 million tons of greenhouse gases annually, surpassing Morocco's 2024 emissions. Projects tied to OpenAI, Meta, Microsoft, and xAI bypass traditional grids.
Google DeepMind Maps AI Attack Surface, Warns of 'Critical' Vulnerabilities
Google DeepMind researchers published a paper mapping the fundamental attack surface of AI agents, identifying critical vulnerabilities that could lead to persistent compromise and data exfiltration. The work provides a framework for red-teaming and securing autonomous AI systems before widespread deployment.
OpenAI Launches GPT-5.4-Cyber, Limits Access to Verified Defenders
OpenAI has released GPT-5.4-Cyber, a fine-tuned version of its flagship model optimized for cybersecurity tasks. Access is strictly limited to verified defenders through a new trust-based framework, continuing a trend of controlled high-capability AI releases.
Google Open-Sources Magika AI for File Detection, 99% Accuracy at 5ms
Google released Magika, an AI model trained on 100M files to identify over 200 content types with 99% accuracy in 5ms. It was Google's internal 'secret weapon' for years, now available via pip install.
Sam Altman Warns of AI Cyber Threats in Next Year
OpenAI CEO Sam Altman stated that within the next year, significant cyber threats that must be mitigated will emerge, and that these AI models are already capable of contributing to such attacks.
MCP Security Crisis: 43% of Servers Vulnerable, 341 Malicious Skills Found
Security audits of the Model Context Protocol (MCP) ecosystem reveal 43% of servers are vulnerable to command execution, while 341 malicious skills were found on marketplaces, exposing systemic security flaws in agentic AI. The findings highlight a growing attack surface as AI agents become more autonomous.
Hugging Face Transfers Safetensors to PyTorch Foundation
Hugging Face is transferring ownership of the Safetensors library to the PyTorch Foundation, shepherded by the Linux Foundation. The move aims to establish it as a neutral, community-driven standard for safe AI model serialization.
Sam Altman Warns of Near-Term AI Superintelligence, Urges New Social Contract
In an interview with Axios, OpenAI CEO Sam Altman stated AI superintelligence is 'so close' and disruptive that America needs a new social contract, warning of significant cyber threats within a year.
Block Compromised NPM/PyPI Packages Automatically with attach-guard
A new Claude Code plugin uses PreToolUse hooks to automatically block compromised packages like the recent axios hijack before they install.
Axios Supply Chain Attack Highlights AI-Powered Social Engineering Threat to Open Source
The recent Axios npm package supply chain attack was initiated by highly sophisticated social engineering targeting a developer. This incident signals a dangerous escalation in the targeting of open source infrastructure, where AI tools could amplify attacker capabilities.
PyPI Quarantines LiteLLM Package After Supply Chain Attack Compromises AI Integration Tool
The Python Package Index (PyPI) has quarantined the LiteLLM package after a supply chain attack distributed a malicious update. The action prevents automatic installation of the compromised version via pip.
Claude Code Security's Blind Spot: Why You Still Need Runtime Monitoring for Magecart
Claude Code Security can't catch Magecart attacks hiding in third-party assets—learn what it can scan and when to use runtime tools instead.
Anthropic Cybersecurity Skills: Open-Source GitHub Repo Provides 611+ Structured Security Skills for AI Agents
A developer has released an open-source GitHub repository containing 611+ structured cybersecurity skills designed for AI agents. Each skill includes procedures, scripts, and templates, built on the agentskills.io standard.
How to Use Claude Code for Reverse Engineering Like the Disney Infinity Modder
A developer used Claude Code to reverse engineer a game binary and solve a decade-old problem. Here's the exact workflow you can copy.
Open-Source Breakthrough Promises 'Invisible' Web Scraping Capabilities
A new 100% open-source Python library called 'ScrapeNinja' claims to make web scraping virtually undetectable by bot detection systems. The tool reportedly mimics human browsing patterns to bypass anti-scraping measures while remaining completely transparent and community-driven.
Open-Source Video Downloader ytDownl Emerges, Challenging Platform Restrictions and Ad Models
A developer has open-sourced ytDownl, a desktop application capable of downloading videos from over 1,000 websites without advertisements. The tool represents a significant shift in user-controlled content access and raises questions about digital ownership and platform ecosystems.
Open-Source Video Downloader Revolutionizes Content Accessibility Across 1000+ Platforms
A new open-source desktop application called ytDownloader enables users to download videos from over 1,000 websites without ads or browser extensions. The tool supports major platforms like YouTube, Instagram, and TikTok while operating under a GPL license for full transparency.
How Semantic AI Bridges Threat Intelligence to Automated Firewall Defense
Researchers propose a neuro-symbolic AI system that automatically converts cyber threat intelligence into firewall rules using semantic relationships. The approach leverages hypernym-hyponym relations to extract actionable security information, outperforming traditional methods.