The Hacker News

⚡ Weekly Recap: Double-Tap Skimmers, PromptSpy AI, 30Tbps DDoS, Docker Malware & More

Zero-day exploits, AI-driven Android malware, firmware backdoors, password manager trust gaps, rising DDoS define this week’s critical cyber threats.
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
InfoQ

How WebAssembly Components Enable Safe and Portable Software Extensions

ABI and scripting to the Wasm Component Model (WASI Preview 2). He shares how to build secure plugin systems that run at near ...

「AIエージェントを使う人間たちはAIにどれだけの権限を与えている ...

Anthropicが自社のコーディングエージェントであるClaude Codeや公開APIを通じた数百万件の対話データを分析し、AIエージェントが実社会でどのように自律性を発揮しているかについての調査報告を2026年2月18日に発表しました。
eWeek

Google Chrome Launches WebMCP in Early Preview for AI Agent Interactions

Google’s Chrome team previews WebMCP, a proposed web standard that lets websites expose structured tools for AI agents instead of relying on screen scraping.