InfoWorld

SAP npm package attack highlights risks in developer tools and CI/CD pipelines

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...
The Hacker News

Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.

Claude Opus 4.7突袭!Anthropic把“不乱猜”做成了核心卖点

当地时间4 月 16 日,Anthropic 正式发布新一代旗舰模型 Claude Opus 4.7。该公司将其定位为"迄今能力最强的通用可用模型",标志着人工智能行业竞争焦点的决定性转变——从追求对话流畅性转向考核自主任务执行能力。