AI Cybersecurity Threats
3 videos · score: 578,864 · first seen May 17, 2026
A single PR just hijacked the NPM registry...
A supply chain attack compromised over 100 npm packages by exploiting a vulnerability in Tanstack's GitHub Actions workflow, allowing an attacker to publish malicious code through a forked pull request. The malware then spread to other packages and even jumped to Python's PyPI registry, highlighting serious flaws in the release process and CI/CD security.
Everyone's getting hacked
The video discusses the growing threat of AI-powered cyber attacks, highlighting the first known use of AI to discover a zero-day exploit and the spread of a dangerous npm supply chain worm called Shy Hallude. It emphasizes how increased code production and the rise of 'vibe coding' are contributing to more frequent and severe cyber threats.
this is really bad...
The video discusses the increasing severity and frequency of cyber attacks, particularly those supported by artificial intelligence. The host shares concerns about the growing ease and profitability of cybercrime, backed by recent examples and trends in the field.