Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

Chardet dispute shows how AI will kill software licensing, argues Bruce Perens

Alarm bells are ringing in the open source community, but commercial licensing is also at risk Earlier this week, Dan ...
eWeek

Meet Paperclip: The Tool Turning OpenClaw Agents Into an AI Company

Paperclip is organizing OpenClaw AI agents into full company structures with roles, budgets, and tasks, signaling the rise of AI-run organizations.
Infosecurity Magazine

What CISOs Should Know (And Do) About OpenClaw

Infosecurity spoke to several experts to explore what CISOs should do to contain the viral AI agent tool’s security vulnerabilities ...
How-To Geek on MSN

This IDE actually made me a better programmer

One IDE to rule them all. You won't want to use anything else.
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.

Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws

Today is Microsoft's March 2026 Patch Tuesday with security updates for 79 flaws, including 2 publicly disclosed zero-day ...

Phish of the day: Microsoft OAuth scams abuse redirects for malware delivery

Crims hope for payday from malicious payloads rather than stealing access tokens Microsoft has warned organizations about ...
InfoQ

Evaluating AI Agents in Practice: Benchmarks, Frameworks, and Lessons Learned

This article introduces practical methods for evaluating AI agents operating in real-world environments. It explains how to combine benchmarks, automated evaluation pipelines, and human review to ...
The Hacker News

Microsoft Warns OAuth Redirect Abuse Delivers Malware to Government Targets

While some of the campaigns have been found to leverage the technique to deliver malware, others send users to pages hosted on phishing frameworks such as EvilProxy, which act as an ...