Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
blockonomi

Polymarket Hack: $3M Drained in Supply-Chain Frontend Attack

Polymarket hack stemmed from a compromised third-party vendor that injected malicious JavaScript into the platform’s frontend. Over 11 wallets lost PUSD on Polygon; stolen funds were bridged to ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
The Hacker News

145 Mastra npm Packages Compromised via Hijacked Contributor Account

Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.
IEEE

Optimal Inclination and Azimuth Angles of a Photovoltaic Module With Load Patterns for Improved Power System Stability

Abstract: Globally, large-scale photovoltaic (PV) systems are being installed to achieve maximum power generation efficiency. However, this often results in severe power fluctuations, impacting the ...