ADTmag

Spring Tools 5.2.0 Adds Experimental Claude Code Plugin and Spring AI Support

The release includes an embedded MCP server that exposes Spring project analytics to AI coding assistants, along with first-class support for Spring AI and automated property refactoring.
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
Search Engine Land

6 content audit workflows to build in Claude

Turn one-off prompts into reusable skills that uncover topical gaps, outdated content, AI visibility issues, and brand voice inconsistencies. Your existing content can be a goldmine if you know how to ...
IEEE

A Coverage-Guided Fuzzing Method for Automatic Software Vulnerability Detection Using Reinforcement Learning-Enabled Multi-Level Input Mutation

Abstract: Fuzzing is a popular and effective software testing technique that automatically generates or modifies inputs to test the stability and vulnerabilities of a software system, which has been ...
GitHub

OpenCode: Everything You Need to Know

A practical guide to OpenCode — from your first prompt to custom agents, skills, plugins, and MCP integrations. Built around clear mental models and real examples, not marketing. Who this is for: ...
GitHub

Academic Research Plugin for Claude Code

A suite of 8 AI-powered academic workflow skills for Claude Code, designed for AI/ML PhD researchers. Comprehensive topic-driven literature survey. Searches arXiv, Semantic Scholar, and DBLP, ...
theregister

Microsoft's worst 'Nightmare' unleashes BitLocker bypass 0-day

Nightmare Eclipse, the prolific zero-day vulnerability hunter with an axe to grind against Microsoft, released yet another exploit late Wednesday that the researcher claims will spawn a command prompt ...
Infosecurity-magazine.com

New “Agentjacking” Attacks Could Hijack AI Coding Agents

Researchers have revealed what they claim to be a “new class of attack” which tricks AI coding agents into executing arbitrary code on developer machines. Tenet Security, which specializes in the ...
theregister

Angry bug hunter with Microsoft beef drops new Windows 0-day

They are angry at Redmond and will have their revenge. Nightmare Eclipse, the prolific bug hunter and possibly disgruntled ex-Microsoft employee, disclosed another zero-day vulnerability just hours ...
Autoblog

Mitsubishi Eclipse Is Back, But It’s Basically A Nissan Leaf

The iconic sports car nameplate returns, this time attached to an electric crossover built on the same platform as the Leaf, Ariya, and Juke. Mitsubishi revives the Eclipse name as an all-electric ...
cybernews

Vengeful researcher repeats Microsoft Patch Tuesday sucker punch, posts new RoguePlanet exploit on GitHub

Nightmare Eclipse is back: the anonymous researcher has released another Windows zero-day, this time dubbed RoguePlanet, targeting Microsoft Defender on fully patched Windows 10 and 11 systems and ...
Bleeping Computer

Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges

Update: Added statement from Microsoft to the end of this article. A security researcher has released a new Microsoft Defender zero-day exploit named "RoguePlanet" just hours after Microsoft fixed two ...