Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
Microsoft

Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access

Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in ...
blockonomi

Polymarket Hack: $3M Drained in Supply-Chain Frontend Attack

Polymarket hack stemmed from a compromised third-party vendor that injected malicious JavaScript into the platform’s frontend. Over 11 wallets lost PUSD on Polygon; stolen funds were bridged to ...
Tech Times

npm Supply Chain Attack: North Korea Backdoored 144 AI Packages in 88 Minutes

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
PV Tech

Oxford PV and Fraunhofer ISE combine technologies in new perovskite-silicon tandem module design

The new module design combines Oxford PV’s tandem perovskite-silicon and Fraunhofer ISE’s Matrix Shingle technologies. Image: Fraunhofer ISE/Jacob Forster. Perovskite PV specialist Oxford PV and ...
The Hacker News

145 Mastra npm Packages Compromised via Hijacked Contributor Account

Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.
IEEE

Optimal Inclination and Azimuth Angles of a Photovoltaic Module With Load Patterns for Improved Power System Stability

Abstract: Globally, large-scale photovoltaic (PV) systems are being installed to achieve maximum power generation efficiency. However, this often results in severe power fluctuations, impacting the ...