SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.

Where Censored Words Find a Safe Haven: Inside Minecraft

The Uncensored Library, a digital project that chronicles attacks on journalistic liberty, is adding a U.S. wing alongside ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
BeInCrypto

Traders Use Claude AI to Build Polymarket Bots — Some Claim Millions in Profits

Traders are using Claude AI to build automated Polymarket trading bots that scan news, detect mispriced probabilities, and execute trades.
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users and developers.
Bleeping Computer

Latest Lazarus Group news

North Korean state-backed hackers associated with the Lazarus threat group are targeting U.S. healthcare organizations in extortion attacks using the Medusa ransomware. AI is quietly accessing ...