Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

A popular password manager was hit by a hack. What you need to know—and how to keep your data safe

LastPass has been affected by the recent data breach of market intelligence platform Klue, which compromised sensitive ...
9to5Mac

Security Bite: Apple’s most impressive agentic AI feature yet is hiding in the Passwords app

9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to ...
Macworld

Apple finally got rid of my biggest password headache

Macworld reports that Apple’s iOS 27, unveiled at WWDC 2026, introduces an AI-powered feature in the Passwords app that automatically updates weak and compromised passwords with a single click. This ...
LinkedIn

Microsoft's Open Source Tools Were Just Hacked to Steal AI Developer Passwords

If your business uses VS Code, Claude Code, or Gemini CLI, read this before your next login. Microsoft confirmed yesterday that hackers breached dozens of its open-source GitHub repositories and ...
MacRumors

Apple Passwords Can Now Automatically Fix Weak and Compromised Passwords With Agentic AI

Apple today announced that the Passwords app can now automatically update weak and compromised passwords using Apple Intelligence and Safari to take action on a user's behalf. The feature builds on ...
TechCrunch

Microsoft’s open source tools were hacked to steal passwords of AI developers

Microsoft has cut off access to dozens of its open source projects hosted on GitHub as it investigates how hackers apparently breached the projects and injected password-stealing malware into the code ...
Bleeping Computer

New Apple feature automatically changes your compromised passwords

At WWDC 2026, Apple announced an Apple Intelligence-powered feature that can automatically fix weak and compromised passwords. Right now, Safari and the built-in Apple Passwords app can automatically ...
The Motley Fool

Investors: This Might Be the Easiest Way to Buy SpaceX, OpenAI, and Anthropic After Their IPOs

There had been controversy surrounding the S&P Dow Jones Indices potentially altering its rules to fast-track companies like SpaceX into indexes such as the S&P 500 (^GSPC 0.01%). And the company ...
The Hacker News

Critical Check Point VPN Flaw Exploited to Bypass Passwords in IKEv1 Setups

Check Point has warned of active exploitation of a critical vulnerability impacting Remote Access VPN and Mobile Access deployments that are configured to use the deprecated IKEv1 key exchange ...
SecurityWeek

Meta Says 20,000 Instagram Accounts Hacked via AI Tool Abuse

The social media giant has informed authorities about the impact of the recent attack involving an account recovery support tool. Meta says roughly 20,000 Instagram accounts may have been hacked in a ...