Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...
InfoWorld

GitHub eyes restrictions on pull requests to rein in AI-based code deluge on maintainers

GitHub is weighing tighter pull request controls and AI-based filters after maintainers warned that a surge of low-quality, ...
Cryptopolitan

dYdX targeted as malicious packages empty its user wallets

Researchers have revealed that bad actors are targeting dYdX and using malicious packages to empty its user wallets.
CPO Magazine

Hackers Are Auctioning 860GB of Source Code Stolen From Target’s Development Server

Hackers have listed 860GB of private source code and assets stolen from Target’s Gitea self-hosted software development ...
Bleeping Computer

Target's dev server offline after hackers claim to steal source code

Update, Jan 13th, 2026: Multiple Target employees have now confirmed in our follow-up report the authenticity of leaked source code sample set and shared internal announcements regarding an access ...
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

Sixteen Claude AI agents working together created a new C compiler

Over two weeks and nearly 2,000 Claude Code sessions costing about $20,000 in API fees, the AI model agents reportedly ...

Ai2 launches family of open-source AI developer agents that adapt to any codebase

According to the Allen Institute for AI, coding agents suffer from a fundamental problem: Most are closed, expensive to train ...

Visual Studio Code 1.109: Watch AI Models Think

In VS Code chat, AI agents can now ask follow-up questions and generate Mermaid diagrams, and Anthropic Claude models show ...
ET CIO

7 Best AI Code Review Tools for DevOps Teams in 2026

Discover the leading AI code review tools reshaping DevOps practices in 2026, enhancing code quality, security, and team productivity with automated solutions.
Dark Reading

Shai-hulud: The Hidden Cost of Supply Chain Attacks

Recent supply chain attacks involving self-propagating worms have spread far, but the damage and long-term impact is hard to ...

China warns of security risks linked to OpenClaw open-source AI agent

By Che Pan and Brenda Goh BEIJING, Feb 5 (Reuters) - China's industry ministry on Thursday warned that the OpenClaw ...