Tech Times

LinkedIn 'BrowserGate' Investigation Alleges Secret Browser Extension Scanning Within Platform

A BrowserGate investigation alleges LinkedIn secretly scans over 6,000 browser extensions and builds device fingerprints ...

Codacy Launches AI Inventory, Giving Engineering Organizations Source-Code-Level Visibility into AI Tool Usage Across Repositories

AI Inventory is available today for all Codacy Business plan customers, with a temporary preview for Team plan customers until May 18th. Organizations not yet using Codacy can start a free trial to ...

Hackers exploit React2Shell in automated credential theft campaign

Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell ...

Pureinsights Discovery 2.8 Introduces MCP Support for Agentic AI Applications

New enterprise connectors for SharePoint Online, OracleDB, SMB, and LDAP expand out-of-the-box data access for AI ...
The Hacker News

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

LiteLLM 1.82.7–1.82.8 supply chain attack exposed 33,185 secrets across 6,943 machines, leaving 3,760 valid credentials ...

How Intelligent Testing Accelerates Digital Transformation

Analytical AI ranks risk, flags anomalies and analyzes test failures for automation stability and defect triage, while GenAI ...
Dark Reading

AI-Assisted Supply Chain Attack Targets GitHub

PRT-scan is the second campaign in recent months where a threat actor has leveraged AI for automated targeting of a ...

From Pokémon GO to physical AI: Niantic Spatial unveils its global 3D mapping platform

Niantic Spatial, the company spun out of Pokémon GO maker Niantic, is launching a revamped version of its Scaniverse platform ...

Claude Code Can Now Control Your Desktop : Here’s What It Can Do

Anthropic’s Claude Code now controls macOS apps with mouse, keyboard, and screenshots, plus remote actions via the new ...
SecurityWeek

Critical Flowise Vulnerability in Attacker Crosshairs

Threat actors have started exploiting CVE-2025-59528, a critical Flowise vulnerability leading to remote code execution.
POWER Magazine

Project Glasswing: What Power Companies and Grid Operators Need to Know

AI can now find and exploit software vulnerabilities faster than humans can patch them. Here's what power companies need to ...
CSO Online

Claude uncovers a 13‑year‑old ActiveMQ RCE bug within minutes

The decade-old ActiveMQ flaw was uncovered and weaponized in minutes, showing AI’s exploit-building potential amid the Mythos ...