12 place 0

376 Valid certificates, stolen accounts: how attackers broke npm's last trust signal

VentureBeat
VentureBeat 1 place · 05/22/2026 18:21 EDT

On May 19, 633 malicious npm package versions passed Sigstore provenance verification. They were cleared by the system because the attacker had generated valid signing certificates from a compromised maintainer account.Sigstore worked exactly as designed: it verified the package was built in a CI environment, confirmed a valid certificate was issued, and recorded everything in the transparency log. What it cannot do is determine whether the person holding the credentials authorized the publish — and that ga

To see detailed statistics for the news please log in »

Read the original

Add your comment
You must be logged in with Facebook to read and write comments.

A newsletter a day!

You may get 10 most important news around midday in daily newsletter. Press the button and we will send you the most important news only, no spam attached.

or register

LIKE us on Facebook so you won't miss the most important news of the day!

News from the same source
VentureBeat VentureBeat
Silicon Valley
George Avalos @ Silicon Valley 1 place · 02/07/2106 01:28 EDT

Newark apartment complex bought for much less than prior value

An East Bay apartment complex has been bought at a price that's well below its prior value. Read more

0

🔮
02.07.2026 ♉︎ Dear Taurus, today awaits you a day filled with a variety of emotions and opportunities,... Read more ›
Silicon Valley
George Avalos @ Silicon Valley 2 place · 02/07/2106 01:28 EDT

PG&E buys San Jose building to bolster South Bay operations

A PG&E Corp. unit has bought a San Jose building in a move to bolster the utility's South Bay operations. Read more

0

Tech.eu
Cate Lawrence @ Tech.eu 1 place · 07/03/2026 05:36 EDT

Pytorch: the software layer underpinning Europe's AI ambitions

Europe has emerged as one of the world's leading centres for open-weight AI, with companies including Mistral, Black Forest Labs and Helsing contributing to a growing ecosystem focused on open models ... Read more

0 fresh

CoinDesk
Shaurya Malwa @ CoinDesk 1 place · today 02:20 EDT

XRP edges higher as whale activity rises while retail traders stay cautious

New wallet creation hit a three-month high and large-holder activity strengthened, but XRP still needs to reclaim $1.10 before the recovery looks convincing. Read more

0 newcommer

Android Authority
Hadlee Simons @ Android Authority 1 place · today 02:18 EDT

More Galaxy Z Fold 8, Fold 8 Ultra, and Z Flip 8 cases appear online ahead of launch

Samsung's foldables are still a few weeks away, but that isn't stopping one company from posting its cases. Read more

0 newcommer

CoinDesk
Omkar Godbole @ CoinDesk 2 place · today 02:17 EDT

Bitcoin's long-term holders have returned to accumulation

Long-term holding wallets have shifted to net accumulation from net distribution, according to Glassnode. Read more

0 newcommer

GSMArena.com
GSMArena.com 1 place · today 02:11 EDT

iPhone 18 Pro Max's exact battery capacity leaks

We've already heard from past rumors that the iPhone 18 Pro Max is set to have the biggest battery ever seen in a non-folding iPhone. Now a new leak purports to give us the exact numbers. And we say numbers because there will be two of them. Like last year, the version of the phone that will be eSIM-only will have a bigger battery - 5,425 mAh in this case... Read more

0 newcommer

Habr
DarkenAmber @ Habr 1 place · today 02:09 EDT

PID Toolkit — браузерный инструмент для настройки PID — регуляторов без установки

Привет, Хабр.Некоторое время назад я публиковал ElectroKit - Браузерный расчётчик электрики, полностью работающий в одном HTML-файле. Благодаря вашим комментариям удалось исправить множество неточностей и значительно улучшить проект, но я всё ещё работаю над нимПоявилась идея сделать похожую вещь для PID-регуляторов. Опять же неудобно - онлайн калькуляторы,где-то посчитать коэффициенты, отдельно переходный процесс, искать очередную реализацию PID и захотелось чтобы всё это было в одном месте как в ElectroKi Read more

0 fresh

Habr
Dzlv (Projecto) @ Habr 2 place · today 02:06 EDT

ТОП лучших планировщиков задач в Ру-сегменте

Всем привет, меня зовут Олег Джулаев, я автор Projecto. Итак, продолжаю серию обзоров российского софта. Сегодня про актуальные планировщики для личной и командной эффективности. Читать далее Read more

0 fresh

Habr
ira-k (Яндекс Практикум) @ Habr 3 place · today 02:06 EDT

Как начать программировать на C++: обзор бесплатной части курса

C++ — один из самых востребованных языков в мире: на нём пишут игры, операционные системы, браузеры, высоконагруженные сервисы и даже микрокод для медицинских устройств. Язык входит в тройку самых популярных по индексу TIOBE, а создать «убийцу C++» пока не удалось никому — попытки были. При этом язык это непростой — с нуля к нему бывает сложно подступиться.В Яндекс Практикуме у курса «Разработчик C++» есть бесплатная вводная часть — она помогает... Read more

0 fresh

TechRadar
TechRadar 1 place · today 02:03 EDT

A Bluetooth tracker for just under AU$18 apiece? Show me the way!

The Samsung Galaxy SmartTag 2 is invaluable for anyone who regularly loses small items — and now you can pick them up at a truly remarkable price. Read more

0 fresh

Habr
Ai_Paradox @ Habr · today 02:01 EDT

Протестировал Fable5, Opus 4.8, Sonnet 5 и GLM 5.2

Доброго дня всем! Протестировал выше упомянутые модели одной задачей. Делал это за завтраком перед работой, писал сюда по дороге в автобусе.. Оценки от меня не будет, только от Qwen 3.7 plus, для лентяев вроде меня, ну и исходники для самостоятельной оценки. Задача:Напиши на Python движок для парсинга и вычисления математических выражений, переданных в виде текстовой строки.Требования и архитектурные ограничения: Читать далее Read more

0 fresh

Ubergizmo
Eliane Fiolet @ Ubergizmo 1 place · today 02:00 EDT

NAVEE Hands-On: Fast 43 mph E-Scooter, Electric Dirt Bike, E-Golf Push Carts, And A Flying Kart

At the NAVEE launch event in Suzhou, the WaveFly 5X flying speedboat was the main attraction, but the company also gave us hands-on time with several of its latest mobility products. I had fun driving the XT5 Pro all-terrain e-scooter and the ST5 Max urban performance e-scooter, while the flagship UT5 Ultra X stood out as the most powerful scooter in the lineup. The UT5 Ultra X can reach an... Read more

0 fresh

Habr
alexeyfv @ Habr · today 01:47 EDT

Треть новых релизов на Яндекс Музыке – ИИ. Теперь точно

Прошло полтора месяца с публикации моей статьи «Я выяснил, что Яндекс Музыка на треть состоит из нейрослопа». Всё это время я продолжал исследовать тему определения ИИ в музыке. Итогом изысканий стал алгоритм, позволяющий определять сгенерированные треки с точностью, близкой к 100%.Кроме того, я проанализировал релизы в Яндекс Музыке за первое полугодие 2026 года и выяснил, что 37% всех новых релизов имеют признаки ИИ-музыки. А если учитывать только релизы с лайками,... Read more

0 fresh

Digital Trends
Pranob Mehrotra @ Digital Trends 1 place · today 01:44 EDT

PS Plus adds Modern Warfare III in July, plus two games worth your time

Call of Duty: Modern Warfare III headlines July's PS Plus lineup, and even with a widely criticized campaign, its multiplayer package makes it worth adding to your library. Read more

0 fresh

The Information
Henry Siu @ The Information 1 place · today 01:37 EDT

Chinese e-commerce giant Alibaba Group and its affiliated payment processor AUS Merchant Services agreed to pay $600 million to resolve U.S. allegations that they failed to prevent illegal sales of pharmaceuticals, controlled substances and related equipment through Alibaba’s e-commerce ... Read more

0 fresh

CoinDesk
Omkar Godbole @ CoinDesk 3 place · today 01:24 EDT

FBI Director Kash Patel caught sleeping on required disclosure of six-figure MSTR investment: Report

Patel loaded up on BTC-holder MSTR shares but failed to file a timely disclosure, according to a report by nonpartisan news outlet NOTUS. Read more

0 fresh

CoinDesk
Shaurya Malwa @ CoinDesk · today 01:22 EDT

Ether, solana, dogecoin in the green after Warsh comments push bitcoin above $60,000

Bitcoin climbed back above $60,000 for the first time in over a week after Fed Chair Kevin Warsh said inflation risks had come down. Solana led the majors, up about 16% on the week, while a semiconductor selloff hit Asian markets and dented the AI trade that has pulled capital from crypto all quarter. Read more

0 fresh

GSMArena.com
GSMArena.com 2 place · today 01:10 EDT

T-Mobile is finally shutting down its 2G network, here's when

T-Mobile is still operating its 2G network, believe it or not, but not for long. The magenta carrier has announced that it will finally be shutting it down on August 3. T-Mobile is the last US carrier to do so - AT&T was the first to retire its 2G network in 2017, and Verizon did it in 2020. T-Mobile stuck with 2G "to give customers and partners additional time to... Read more

0 fresh

TechRadar
TechRadar 2 place · today 01:03 EDT

Amazon Prime Day Apple deals 2026: the best early iPhone, iPad, AirPods and MacBook deals in Australia

Find the best Apple Prime Day sales 2026 in Australia, including iPhone, AirPods, iPad, MacBook and Apple Watch deals. Read more

0 fresh

The most popular news from the same source for the last week
VentureBeat VentureBeat
VentureBeat
VentureBeat 3 place · 06/25/2026 13:02 EDT

OpenAI has made a significant update to its most widely used language model, GPT-5.5 Instant, which is the default in the free version of ChatGPT. The company announced the upgraded version of GPT-5.5 Instant yesterday on X, calling it "much more fun to talk to" and saying it is "better at understanding the intent behind a question and adapting its response accordingly," as well as offering improvements in shopping results,... Read more

0

VentureBeat
VentureBeat · 06/25/2026 19:31 EDT

Liquid AI, founded by former MIT computer scientists, today released its smallest AI language model yet, LFM2.5-230M, and enterprises would do well to consider it for their uses in data extraction and local deployment on smartphones, laptops and robotics.This is a 230-million-parameter foundation model explicitly designed for on-device agentic workflows, and as Liquid states in its release blog post, that small size makes it possible to run nearly "anywhere." According... Read more

0

VentureBeat
VentureBeat · 06/26/2026 08:00 EDT

Industrialized factories changed how the world produced physical goods: more output, lower costs, faster than anything that came before. Now a similar shift is happening with software. LLMs have lowered the barrier to writing code, increased individual output, and pushed organizations to think about software development as a production system. The standard software development lifecycle and CI/CD practices that have held for decades won't hold up under that pressure. That's... Read more

0

VentureBeat
VentureBeat 3 place · 06/26/2026 13:00 EDT

OpenAI is announcing a limited preview of its next-generation GPT-5.6 model series today, introducing three distinct, capability-tiered models—Sol, Terra, and Luna—designed to re-engineer developer and enterprise workflows. The initial rollout is available through the API and Codex to a narrow set of approximately 20 total organizations after OpenAI shared the models and release plans with the U.S. government, following an executive order issued by President Donald J. Trump earlier this... Read more

0

VentureBeat
VentureBeat 2 place · 06/26/2026 13:32 EDT

An endpoint agent cannot report its own absence. The 2026 Axonius Actionability Report, conducted with the Ponemon Institute and surveying 662 IT and security professionals, put a number on a gap SOC teams have worked around for years. Across the Axonius customer base, 12.7% of devices in a 298,000-device median inventory are missing their expected security agent.If a device has no agent, no management console shows it. If a CMDB... Read more

0

VentureBeat
VentureBeat 2 place · 06/26/2026 18:58 EDT

Long-horizon reasoning exposes a core weakness in AI agents: context windows fill up fast, and retrieval pipelines return noise instead of signal.To solve this, researchers at the National University of Singapore developed MRAgent, a framework that abandons the static "retrieve-then-reason" approach. Instead, it uses a mechanism that allows an agent to dynamically develop its memory based on accumulating evidence. This multi-step memory reconstruction is integrated into the reasoning process of... Read more

0

VentureBeat
VentureBeat 2 place · 06/27/2026 15:30 EDT

Anthropic recently told its growth team to hire more product managers, not fewer. The reason, as reported in industry coverage, was that Claude Code had quietly turned its engineering org into a team that ships at roughly three times its actual headcount, and the bottleneck moved from the integrated development environment (IDE) to the people deciding what to build.That detail is easy to miss in the noise of every AI... Read more

0

VentureBeat
VentureBeat 2 place · 06/28/2026 14:00 EDT

In the past two years, businesses have been trying to fit large language models (LLMs) into support, analytics, development, and internal automation like never before. Along with the increasing adoption of AI technology, another trend is gaining momentum — cybercriminals are taking advantage of the disconnect between assumptions about LLMs and their actual characteristics.In 2025 and 2026, several independent sources have highlighted the same trend: Prompt injection remains one of... Read more

0

VentureBeat
VentureBeat · 06/29/2026 12:53 EDT

A single fake error report hijacked Claude Code in controlled testing — the agent ran the attacker's code with the developer's full privileges, and not one alert fired. EDR, WAF, IAM, and the firewall all missed it completely.Tenet Security's June agentjacking disclosure describes a single crafted Sentry error event — sent through a public credential that requires no breach and no authentication — that injected attacker instructions into error data... Read more

0

VentureBeat
VentureBeat · 06/29/2026 16:36 EDT

Even as the geopolitical conversation around AI continues to grow more fraught following the U.S. government's actions to limit the new models from Anthropic and OpenAI, Chinese open source darling DeepSeek is back with yet another open release that could once again change AI development around the globe. Over the weekend, the firm released DSpark, a new, MIT-Licensed system designed to make large language models answer faster without changing what... Read more

0

Most popular sources

  • You see 891 news out of 891.
  • Sources 61 out of 61.
ScienceDaily 0%
Startup News 0%
Tech Wire Asia 0%
VentureBeat 0%
Tech.eu 0%
View sources »

LIKE us on Facebook so you won't miss the most important news of the day!

02.07.2026 02:30
Last update: 02:21 EDT.
News rating updated: 09:21.

What is Times42?

Times42 brings you the most popular news from tech news portals in real-time chart.
Read about us in FAQ section.


Times42 © 2026