New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

groundcover Expands AI Observability to Support Agentic Workflows in Google Cloud

SAN FRANCISCO, April 22, 2026--groundcover, the leading bring-your-own-cloud (BYOC) observability platform, today announced a ...

AI & Tech Brief: The post-LLM era begins

A sit-down with Professor Eric Xing, the president of the UAE’s Mohamed bin Zayed University of Artificial Intelligence.

Another npm supply chain worm is tearing through dev environments

Yet another npm supply-chain attack is worming its way through compromised packages, stealing secrets and sensitive data as ...

Groundcover adds agentic AI tracing to observability platform, backs Google Vertex AI

Application observability startup groundcover Ltd. today announced a major expansion of its AI Observability capability, ...
Security Boulevard

Attacking the MCP Trust Boundary

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol ...

Ant Group Unveils Ling-2.6-Flash: A Major Leap in AI Efficiency

Ant Group today officially announced the release of Ling-2.6-flash, a new large language model designed to prioritize ...

SiIicon Valley's AI agent hiccups: Wasted tokens and 'chaotic' systems

The underlying technology behind AI agents is still rickety and a potential cost-sucker. At two Silicon Valley events this ...

Grafana offers AI assistant for free, warns users not to go mad

Grafana is offering its AI assistant for free to open source and on-prem users — though on stage at its Barcelona user ...

AI’s token economy revolution creates new China tech winners

China's AI token economy boosts niche startups, attracting investors and reshaping the tech landscape amid traditional giants ...

SUSE and Industry Leaders Deliver Secure Agentic AI for Infrastructure Management

SUSE ®, a global leader of enterprise open source solutions, today announced relationships with global industry players ...