Cybernews

Popular AI coding tool Blackbox AI, with 5M downloads, grants root access to hackers

BlackBox AI, a popular VS Code coding assistant, has a critical indirect prompt injection vulnerability. Hackers can exploit this to gain remote root access to a user’s computer.
heise online

VS Code: Python Environments Extension generally available

As Microsoft announced, the Python Environments Extension for Visual Studio Code is generally available after a one-year preview phase. It is intended to make the workflow for managing Python ...
Security Boulevard

Invisible Threats: Source Code Exfiltration in Google Antigravity

Source Code Exfiltration in Google Antigravity‍TL;DR: We explored a known issue in Google Antigravity where attackers can silently exfiltrate proprietary source codeBy hiding malicious instructions ...
Kotaku

The Winter Olympics Will Make Sure Nobody Cheats By Injecting Their Penis With Acid

Are male ski jumpers injecting a specific kind of acid into their penises in order to gain a small advantage over their competitors? Maybe. But if so, don’t worry, Winter Olympics officials are on it.
Security Boulevard

Anomalous Context Injection Detection in Post-Quantum Environments

Learn how to detect anomalous context injections in MCP deployments using post-quantum cryptography and ai-driven behavioral analysis to prevent puppet attacks.
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
Communications of the ACM

Safe Coding

Safe coding is a collection of software design practices and patterns that allow for cost-effectively achieving a high degree ...
The Guardian

‘Penisgate’ at the Olympics: why inject acid into your penis, and what are the health ...

The World Anti-Doping Agency is investigating whether ski jumpers were injecting their penises with hyaluronic acid in order to fly further In the quest for Olympic gold, professional athletes endure ...
i-SCOOP

OpenFang: The Agent Operating System

Discover OpenFang, the Rust-based Agent Operating System that redefines autonomous AI. Learn how its sandboxed architecture, pre-built "Hands," and security-first design outperform traditional Python ...
i-SCOOP

What is the Impact of AGENTS.md Files on the Quality of AI Output?

Are AGENTS.md files actually helping your AI coding agents, or are they making them stupider? We dive into new research from ETH Zurich, real-world experiments, and security risks to find the truth ...
Forbes

Rumors Fly Claiming Olympic Ski Jumpers Are Injecting Their Genitals

Marius Lindvik, a ski jumper for Team Norway, received a three-month suspension last year after it was found that the crotch area in his ski jumping suit was re-stitched. (Photo by Tom Weller/Getty ...