The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
SecurityWeek

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

Vulnerabilities in PDF platforms from Foxit and Apryse could have been exploited for account takeover, data exfiltration, and other attacks.
Indianapolis Business Journal

Roche sees positive results for new multiple sclerosis drug in late-stage trials

About 1 million people are living with multiple sclerosis in the U.S., and about 10% of those have PPMS, making it the least common form of the disease.
Indianapolis Business Journal

Medical spas, compounded drugs in focus as Indiana lawmakers hear warnings — and pushback

A fast-growing corner of Indiana’s health care marketplace could soon face its first statewide regulatory framework.
Tennessean

Huazheng Expands Global Presence as a Future Leading Primary Current Injection Tester Supplier

BAODING, HEBEI, CHINA, January 15, 2026 /EINPresswire.com/ — The global power testing and electrical commissioning industry is entering a period of steady growth ...

Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for

Anthropic's Opus 4.6 system card breaks out prompt injection attack success rates by surface, attempt count, and safeguard ...
The Hacker News

⚡ Weekly Recap: Double-Tap Skimmers, PromptSpy AI, 30Tbps DDoS, Docker Malware & More

Zero-day exploits, AI-driven Android malware, firmware backdoors, password manager trust gaps, rising DDoS define this week’s critical cyber threats.