📰

Today's News Highlights

🏢 Microsoft Security High

From package to postinstall payload: Inside the Mastra npm supply chain compromise

Today · 03:43 UTC

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend against supply chain attacks using Microsoft Defender an…

Read full article →
🏢 Microsoft Security High

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Yesterday · 23:11 UTC

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, Tor-based communications, and worm-like propagation. Bey…

Read full article →
🔐 Cloudflare Blog High

Project Glasswing: what Mythos showed us

18 May 2026

Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is…

Read full article →
🏢 Microsoft Security Medium

Beyond the benchmark: Advancing security at AI speed

Yesterday · 19:30 UTC

Read how Microsoft Security has advanced its agentic vulnerability detection system, codename MDASH, integrating into real-world workflows across Windows, Azure, and identity syste…

Read full article →
🤖 The Guardian Technology

Anthropic releases 'safe' version of Claude Mythos AI model to public

9 Jun 2026 · 22:28 UTC

Anthropic released Fable 5, a public version of its advanced Mythos AI model class, while keeping tighter controls around cybersecurity and other sensitive uses.

Read full article →

Top Stories by Impact

🏢 Microsoft Security High

From package to postinstall payload: Inside the Mastra npm supply chain compromise

Today · 03:43 UTC

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend against supply chain attacks using Microsoft Defender an…

Read full article →
🏢 Microsoft Security High

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Yesterday · 23:11 UTC

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, Tor-based communications, and worm-like propagation. Bey…

Read full article →
🔐 Cloudflare Blog High

Project Glasswing: what Mythos showed us

18 May 2026

Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is…

Read full article →
🏢 Microsoft Security Medium

Beyond the benchmark: Advancing security at AI speed

Yesterday · 19:30 UTC

Read how Microsoft Security has advanced its agentic vulnerability detection system, codename MDASH, integrating into real-world workflows across Windows, Azure, and identity syste…

Read full article →
🔐

Cybersecurity

Cloudflare Blog

1

Project Glasswing: what Mythos showed us

High

18 May 2026

Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is needed before this work can scale.

Read full article →
🤖

AI & Technology

The Guardian Technology

1

Anthropic releases 'safe' version of Claude Mythos AI model to public

9 Jun 2026 · 22:28 UTC

Anthropic released Fable 5, a public version of its advanced Mythos AI model class, while keeping tighter controls around cybersecurity and other sensitive uses.

Read full article →
🏢

Vendor Security

Microsoft Security

1

From package to postinstall payload: Inside the Mastra npm supply chain compromise

High

Today · 03:43 UTC

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend against supply chain attacks using Microsoft Defender and actionable threat intelligence. The po…

Read full article →
2

Crypto Clipper uses Tor and worm-like propagation for persistence and control

High

Yesterday · 23:11 UTC

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, Tor-based communications, and worm-like propagation. Beyond stealing cryptocurrency transactions…

Read full article →
3

Beyond the benchmark: Advancing security at AI speed

Medium

Yesterday · 19:30 UTC

Read how Microsoft Security has advanced its agentic vulnerability detection system, codename MDASH, integrating into real-world workflows across Windows, Azure, and identity systems. The post Beyond the benchmark: Advan…

Read full article →