NPM flooded with malicious packages downloaded more than 86k times

https://arstechnica.com/security/2025/10/npm-flooded-with-malicious-packages-downloaded-more-than-86000-times/

#HackerNews #NPM #malicious #packages #security #vulnerabilities #cyber #threats #software #development

It seems to be quite convenient that google flags immich.app site as dangerous, since immich is an environment in which you can host your own photographs in a safe manner without Google.

#Immich #app #self #hosting #technology #OpenSource #programming #Linux #photographs #Google #Malicious

https://immich.app/blog/google-flags-immich-as-dangerous

→ We Are Still Unable to Secure LLMs from #Malicious Inputs
https://www.schneier.com/blog/archives/2025/08/we-are-still-unable-to-secure-llms-from-malicious-inputs.html

“This kind of thing should make everybody stop and really think before deploying any AI agents. We simply don’t know to defend against these attacks. We have zero agentic AI systems that are secure against these attacks.”

“It’s an existential problem that, near as I can tell, most people developing these technologies are just pretending isn’t there.”

#AI#LLMs #stop #agents #secure #attacks #problem

→ We Are Still Unable to Secure LLMs from #Malicious Inputs
https://www.schneier.com/blog/archives/2025/08/we-are-still-unable-to-secure-llms-from-malicious-inputs.html

“This kind of thing should make everybody stop and really think before deploying any AI agents. We simply don’t know to defend against these attacks. We have zero agentic AI systems that are secure against these attacks.”

“It’s an existential problem that, near as I can tell, most people developing these technologies are just pretending isn’t there.”

#AI#LLMs #stop #agents #secure #attacks #problem

StarDict 預設會將剪貼簿的內容透過 HTTP (不是 HTTPS) 傳到中國的伺服器上

#china #chinese #clipboard #http #https #malicious #privacy #security #stardict

StarDict 預設會將剪貼簿的內容透過 HTTP (不是 HTTPS) 傳到中國的伺服器上

#china #chinese #clipboard #http #https #malicious #privacy #security #stardict