SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
ascopubs.org

The Pathologic Response Evaluation and Detection in Circulating Tumor-DNA Study: Ultrasensitive Circulating Tumor-DNA Assessment of Breast Cancer Minimal Residual Disease

Of 227 enrolled patients, 220 were evaluable for pCR (48% HER2-positive; 52% TNBC) and 91 patients (41%) had pCR. The primary objective was not met. Although all patients with pCR were ctDNA-negative ...

What Anthropic’s Massive 500,000-Line Source Code Leak Reveals About Claude

Leaked Claude Code internals detail Undercover Mode to hide AI commits and a YOLO classifier that decides when user approval ...