The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

Critical vulnerability in Ruby's standard library ERB:attackers can execute code

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...
Security Boulevard

Lattice-based Signature Schemes for MCP Host Authentication

Learn how to use lattice-based signature schemes like CRYSTALS-Dilithium for securing Model Context Protocol (MCP) host authentication in a post-quantum world.
The Lancet

Prevalence estimates of sickle cell disease among children and adolescents in sub-Saharan Africa: a systematic review and modelling analysis

Despite data gaps in many countries, the burden of sickle cell disease, especially in west and central Africa, underscores ...

Anthropic releases Claude Opus 4.7, narrowly retaking lead for most powerful generally available LLM

Opus 4.7 utilizes an updated tokenizer that improves text processing efficiency, though it can increase the token count of ...
InfoWorld

Exciting Python features are on the way

Don’t miss the transformative improvements in the next Python release – or these eight great reads for Python lovers.