CyberStrikeAI tool adopted by hackers for AI-powered attacks

Researchers warn that a newly identified open-source AI security testing platform called CyberStrikeAI was used by the same threat actor behind a recent campaign that breached hundreds of Fortinet ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
GitHub

Transparent client-side encryption for S3. Zero code changes.

S3's server-side encryption is great, but your cloud provider holds the keys. S3Proxy sits between your app and S3, encrypting everything before it leaves your infrastructure ...
GitHub

ercsctt/laravel-file-encryption

A robust file encryption package for Laravel using AES-256-GCM authenticated encryption. Designed for secure, efficient encryption and decryption of files of any size with streaming support for memory ...
IEEE

Secure Implementation of Population Data Encryption for Village Websites Using Advanced Encryption Standard (AES-256)

Abstract: Village Information Systems (SID) manage sensitive population data including demographics, personal identities, and residential records, alongside financial and administrative information, ...
9to5Mac

Lawsuit claims WhatsApp encryption is a lie; cryptography professor weighs in

Both the founders of WhatsApp and current owner Meta state that the app uses end-to-end encryption, meaning that nobody outside the chat can access the content. A lawsuit claims that this isn’t true ...
IEEE

RISC-V Core with AES-256 Accelerator

Abstract: This paper presents a RISC-V core integrated with a cryptographic accelerator for 256-bit Advanced Encryption Standard (AES-256). It supports several block cipher modes and has been ...