The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

CERT-In Flags High-Risk Chrome Flaw, Urges Immediate Update for Windows, Mac and Linux Users

CERT-In warns millions of Chrome users to update immediately after a critical flaw exposes systems to remote cyberattacks.
gihyo.jp

AIとの 会話に インタラクティブな UIを 埋め込む 「MCP Apps ...

MCPプロジェクトは2026年1月26日、MCPツールを使ったAIとの会話内でインタラクティブなUIコンポーネントを返すことができる 「MCP Apps」 をMCP公式の拡張機能として公開した。

Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies

Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...
Cyber Daily

Hacked: US cyber agency adds six vulnerabilities to known-exploited listing

Microsoft zero-day vulnerability added to KEV Catalog alongside SmarterTools SmarterMail authentication bypass bug and ...

Malicious Chrome Extensions found on Web Store, Over 1 lakh users at risk: Remove now

Security researchers have discovered several malicious Chrome extensions on the official Chrome Web Store that can steal user data and compromise privacy. Some of these extensions are still available ...
The Register-Herald

European Union opens investigation into Musk's AI chatbot Grok over sexual deepfakes

European Union regulators have opened a formal investigation into Elon Musk's social media platform X after its AI chatbot ...