Claude collaboration tools left the door wide open to remote code execution

The first of the three flaws involved abusing Claude's Hooks feature to achieve remote code execution. Hooks are user-defined shell commands that execute at various points in the tool's lifecycle, ...
BigCountryHomepage

Apple rolls out age verification tool

App developers in Brazil, Australia, Singapore, and the U.S. states of Utah and Louisiana are now able to use the company’s ...

Former Alphabet 'moonshot' robotics company Intrinsic is folding into Google

After five and a half years developing its technology at Alphabet's "moonshot factory" X, Intrinsic became an independent Alphabet company in its "Other Bets" division in July 2021. The Google parent ...
TMCnet

Aduna Reaches Milestone as a Leading Provider of U.S. Network APIs

This unified access enables businesses to seamlessly leverage carrier-grade network capabilities for authentication, security, and real-time intelligence. "Bringing all three major U.S. carriers ...
WinBuzzer

Google’s Mandatory Android Dev Registration Rule Faces Revolt

EFF and F-Droid have led 37 organizations in demanding Google rescind its mandatory Android developer registration policy set ...

Kilo launches KiloClaw, allowing anyone to deploy hosted OpenClaw agents into production in 60 seconds

Instead of requiring users to provision their own hardware or Virtual Private Servers (VPS), KiloClaw runs on a multi-tenant Virtual Machine (VM) architecture powered by Fly.io ...

Apple expands age assurance tools as new App Store requirements roll out in several regions

As new App Store restrictions for 18+ apps take effect in select markets, Apple is rolling out new age assurance tools for ...
diginomica

CAMARA's open approach makes telecom network capabilities accessible to AI agents

The Linux Foundation's CAMARA project is exposing telecommunications network capabilities to AI agents through the Model ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
Live Bitcoin News

npm Worm Steals Crypto Keys, Targets 19 Packages

A self-replicating npm worm dubbed SANDWORM_MODE hits 19+ packages, harvesting private keys, BIP39 mnemonics, wallet files and LLM API keys from dev environments.

Smart Banner Hub Opens Clustrauth™ API — Quantum-Safe Document Signing for Developers at $5 Per Signature

New REST API gives developers programmatic access to NIST FIPS 204 post-quantum document authentication — sign any ...