CNX Software

Hugging Face’s Reachy Mini is an open-source AI robot for your computer or Raspberry Pi CM4

Better known for its artificial intelligence software solutions, Hugging Face unveiled the Reachy Mini open-source desktop ...
The Hacker News

Claude Code Security and Magecart: Getting the Threat Model Right

Magecart hides payload in favicon EXIF via third-party scripts, bypassing static analysis and stealing checkout data at ...

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
Blockonomi

OpenClaw Developers Under Attack: Fraudulent $CLAW Token Giveaway Scam Exposed

OpenClaw developers targeted by sophisticated phishing scam using fake $CLAW token giveaways on GitHub. Learn how attackers ...
WinBuzzer

Trivy Breached Twice in a Month via GitHub Actions

Attackers have hijacked 75 of 76 GitHub Actions tags for Aqua Security's Trivy scanner, distributing credential-stealing ...

GitHub adds AI-powered bug detection to expand security coverage

GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static ...
MPR News

Fargo crime suspect says AI face recognition software failed. Police say there was more to the arrest

The Fargo Police Department has drawn criticism for jailing a woman for more than five months after artificial intelligence ...
Wired

ICE and CBP’s Face-Recognition App Can’t Actually Verify Who People Are

ICE has used Mobile Fortify to identify immigrants and citizens alike over 100,000 times, by one estimate. It wasn't built to work like that—and only got approved after DHS abandoned its own privacy ...
The Verge

Meta reportedly wants to add face recognition to smart glasses while privacy advocates are distracted

An internal memo reviewed by The New York Times says Meta is considering launching the feature ‘during a dynamic political environment.’ An internal memo reviewed by The New York Times says Meta is ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible ...
ZDNet

I tried a Claude Code rival that's local, open source, and completely free - how it went

I wore the world's first HDR10 smart glasses TCL's new E Ink tablet beats the Remarkable and Kindle Anker's new charger is one of the most unique I've ever seen Best laptop cooling pads Best flip ...