Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
SecurityWeek

OpenClaw Vulnerability Allowed Websites to Hijack AI Agents

An OpenClaw vulnerability allowed malicious websites to take over AI agents, exposing sensitive information and enabling data ...

ClawJacked attack let malicious websites hijack OpenClaw to steal data

Security researchers have disclosed a high-severity vulnerability dubbed "ClawJacked" in the popular AI agent OpenClaw that allowed a malicious website to silently bruteforce access to a locally ...
Techrights

Links 03/03/2026: "No one wants to read your AI slop" and "chatbots in the kill chain"

The circuit court now expects the Trump administration to file a brief by March 20 explaining why it appealed the district court’s ruling and for Kelly’s legal team to file its reply brief by April 27 ...
InfoQ

How WebAssembly Components Enable Safe and Portable Software Extensions

ABI and scripting to the Wasm Component Model (WASI Preview 2). He shares how to build secure plugin systems that run at near ...
ギズモード・ジャパン

見たい映画が一発で見つかる! Netflix裏コード集

2024年9月8日の記事を編集して再掲載しています。「ネトフリ見飽きた」「似たような作品ばかり」「もう見るTVも映画もない」…と思ったとき試したいのが、Netflix裏コード。URLのnetflix.com/browse/genre/のあとにこやつを入力するだけで見たいカテゴリの作品一覧がバーンと出てくるジャンル別シークレットコードのことなんですが、アレって随時増強 ...