The Hacker News

UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device

UNC4899 breached a crypto firm via AirDrop malware and cloud exploitation in 2025, stealing millions through Kubernetes and Cloud SQL abuse.

Cybercriminals are using AI to attack the cloud faster - and third-party software is the ...

Google's latest threat report warns that third-party tools are now prime targets for attackers - and businesses have only days to secure them.
腾讯网

给“氛围编程”系上安全带:阿里集团 AI 代码评审实践与 Benchmark 开源

前言本文将分享阿里集团在 AI 代码评审方向“历时一年半”、“数万亿 Token 真实场景打磨”的探索现状,以及我们联合南京大学研发效能实验室开源的、汇聚 80 多位资深工程师进行多轮交叉标注的业界首个多语言、具备存储库上下文感知的 ...