Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with running a seemingly benign GitHub repository could execute a malicious payload that is ...
GitHub

Install with Options

An app with a simple purpose: more advanced app installs without needing to use ADB. Install with Options uses Shizuku to run with shell permissions, allowing you to install test-only apps, bypass ...
The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.