Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...
Decrypt

'Judge the Code, Not the Coder': AI Agent Slams Human Developer for Gatekeeping

An AI agent got nasty after its pull request got rejected. Can open-source development survive autonomous bot contributors?
The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...