The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
CIO

19 vibe coding tools for democratizing app development

Vibe coding is legit enough that enterprises need to start experimenting. Finding the right tool for your users and use cases is the first step.
InfoWorld

SAP npm package attack highlights risks in developer tools and CI/CD pipelines

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...
CSO Online

More fake extensions linked to GlassWorm found in Open VSX code marketplace

The threat actor seeding the Open VSX code marketplace with fraudulent extensions that download the GlassWorm malware has ...

The Onion’s bid to take over Alex Jones’ Infowars is in limbo as new court battles emerge

The Onion's plan to transform Alex Jones' Infowars platforms into parody sites are in limbo again. New legal filings by Jones ...