Morning Overview on MSN

The AI-generated zero-day discovered by Google used clean 'textbook' Python code — a hallmark of large language model output

The exploit code was almost too neat. When Google’s Threat Intelligence Group flagged a previously unknown software ...
eOpicle

How to Vibe Code in Science: Notes From the Digital Lab Rat Era

Now half the scientific community looks like caffeinated DJs remixing protein structures at 2 a.m. while whispering things ...

Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

Running Claude Code or Claude in Chrome? Here's the audit matrix for every blind spot your security stack misses

Four research teams found the same confused deputy failure in Claude across three surfaces in 48 hours. This audit matrix ...
Nature

How to vibe code in science: early adopters share their tips

He was brainstorming ideas with an artificial-intelligence tool and getting it to code and create them quickly. Together, ...

Google Reports a First: Hackers Used AI to Identify Security Flaw

It's the first known time that a threat actor developed a zero-day exploit using AI. Is it just the start? Here's what we ...
Android

Hackers Are Using AI to Build Exploits, Google Security Researchers Find

Google has identified the first zero-day exploit likely developed by artificial intelligence, marking a new era in cyber warfare. The exploit targeted two-factor authentication (2FA) and featured code ...
Hosted on MSN

From Karel to picoCTF: You Can Win Your First Python CTF in 2026

The 2026 picoCTF competition has officially expanded with more challenges than ever before, yet the transition from the block-based logic of Karel to the raw Python scripting required for CTFs remains ...
Android

OpenAI's ChatGPT Codex to Finally Get Remote PC Control from Android Devices

OpenAI is developing a new feature for the ChatGPT Android app that will allow users to remotely control Codex coding sessions on their PCs. Found in version 1.2026.125, this update addresses a ...
Microsoft

When prompts become shells: RCE vulnerabilities in AI agent frameworks

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...

What’s a coding course for in the age of AI? Maybe not learning to write it

Intro to Programming courses at NC State still have a no-AI policy. Heckman and Roberts are committed to that, unlike Jordan.
The Hacker News

PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

ZiChatBot malware spread via 3 PyPI packages in July 2025 uses Zulip APIs as C2, enabling stealthy attacks across systems ...