The Hacker News

OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration

CNCERT warns OpenClaw AI agent has weak defaults enabling prompt injection and data leaks, prompting China to restrict use on government systems.

‘Raise a lobster’: How OpenClaw is the latest craze transforming China’s AI sector

The OpenClaw craze aligns with China’s embrace of open-source AI, a strategy that has helped build labs’ reputation among the ...
The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.

AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
Yahoo Malaysia

‘I bought weight loss jabs on social media - this is why I regret it’

Keeley’s sister also tried the cheap weight loss drugs and recalled having stomach aches that felt like “acid in her stomach” ...
Tom's Hardware on MSN

Invisible malicious code attacks 151 GitHub repos and VS Code

The technique exploits Unicode Private Use Area characters, which render as zero-width whitespace in virtually every code ...

Ontario restricts new rental building in favour of Sanofi pharma plant

Minister’s Zoning Order restricts developer or any future owner from constructing anything taller than 33 metres at proposed site ...