ThreatsDay Bulletin tracks active exploits, phishing waves, AI risks, major flaws, and cybercrime crackdowns shaping this week’s threat landscape.

Operation Dream Job is evolving once again, and now comes through malicious dependencies on bare-bones projects.

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...

Codex can exploit vulnerable crypto smart contracts 72% of the time, raising urgent questions about AI-powered cyber offense and defense.

DuckDuckGo is offering its own voice AI chat feature built using OpenAI models, all for free, and with no data tracking at ...

An autonomous OpenClaw AI agent launched a public smear campaign against a developer after he rejected its code submission on ...

Outlook add-in phishing, Chrome and Apple zero-days, BeyondTrust RCE, cloud botnets, AI-driven threats, ransomware activity, ...

An AI agent got nasty after its pull request got rejected. Can open-source development survive autonomous bot contributors?

The media is full of breathless reports that AI can now code and human programmers are going to be put out to pasture. We aren’t convinced. In fact, we think the “AI revolution” ...

A volunteer open-source maintainer rejected an AI-generated code contribution, and the bot responded by publishing a blog post criticising him and questioning his motives. The incident has sparked ...

The FBI warned in 2023 that “thousands of skilled IT workers” were moving abroad from North Korea and setting up as freelance IT professionals, warning recruiters to be wary of remote workers who ...

Learn how to use Bash aliases to shorten commands, reduce errors, speed up tasks, and improve your productivity in the Terminal.