Brief

last 24h

[2/2] 221 sources

Multi-source AI news clustered, deduplicated, and scored 0–100 across authority, cluster strength, headline signal, and time decay.

TOOL · Mastodon — fosstodon.org English(EN) · 4d

https://www. linkedin.com/posts/michalpiszc zek_mini-shai-hulud-shipped-84-malicious-npm-share-7459958515512573952-Q0bg - "Mini Shai-Hulud shipped 84 # maliciou

A new type of malware, dubbed "Mini Shai-Hulud," has been released, capable of infecting AI agents. This malicious software deployed 84 versions in just six minutes, marking the first known instance of a worm specifically targeting AI agents rather than traditional software packages. AI

IMPACT Introduces a new threat vector specifically targeting AI agents, potentially impacting their security and reliability.
- Mini Shai-Hulud
- AI agents
SIGNIFICANT · Forbes — Innovation English(EN) · 1w · [10 sources]

GitHub Says 3,800 Repositories Breached—TeamPCP Hackers Demand $50,000

The hacker group TeamPCP has breached GitHub's internal repositories, potentially compromising source code after a GitHub employee installed a malicious VS Code extension. The group claims to have exfiltrated approximately 3,800 repositories and is attempting to sell the stolen data for at least $50,000, threatening to leak it if no buyer is found. This incident is part of a broader trend of software supply-chain attacks targeting developer tools and ecosystems. AI

IMPACT Highlights the increasing risk of supply-chain attacks targeting AI developer tools and ecosystems, potentially compromising sensitive code and credentials.