Engineering &
Security Wire
Curated from Hacker News, Lobsters, Krebs on Security, and other top sources. Updated every 6 hours.
Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners
A financially motivated operation codenamed REF1695 has been observed leveraging fake installers to deploy remote access trojans (RATs) and cryptocurrency miners since November 2023. "Beyond cryptomining, the threat actor monetizes infections through CPA (Cost Per Action) fraud, directing victims to content locker pages under the guise of software registration," Elastic
Inside Nepal's Fake Rescue Racket
37 points, 1 comments on Hacker News
The State of Trusted Open Source Report
In December 2025, we shared the first-ever The State of Trusted Open Source report, featuring insights from our product data and customer base on open source consumption across our catalog of container image projects, versions, images, language libraries, and builds. These insights shed light on what teams pull, deploy, and maintain day to day, alongside the vulnerabilities and
A.I. Helped One Man (and His Brother) Build a $1.8B Company
Article URL: https://www.nytimes.com/2026/04/02/technology/ai-billion-dollar-company-medvi.html Comments URL: https://news.ycombinator.com/item?id=47612784 Points: 23 # Comments: 18
Lemonade by AMD: a fast and open source local LLM server using GPU and NPU
46 points, 12 comments on Hacker News
Sweden goes back to basics, swapping screens for books in the classroom
187 points, 97 comments on Hacker News
Enabling Codex to Analyze Two Decades of Hacker News Data
13 points, 2 comments on Hacker News
OpenAI acquires TBPN
OpenAI acquires TBPN to accelerate global conversations around AI and support independent media, expanding dialogue with builders, businesses, and the broader tech community.
DMCA-resistant Claude Code source code
Article URL: https://codeberg.org/tornikeo/claude-code Comments URL: https://news.ycombinator.com/item?id=47612387 Points: 11 # Comments: 1
Show HN: I built a DNS resolver from scratch in Rust – no DNS libraries
I built a DNS resolver that lets me use https://frontend.numa instead of localhost:5173 — auto-generated TLS certs, WebSocket passthrough, path routing. No mkcert, no nginx, no /etc/hosts. Comments URL: https://news.ycombinator.com/item?id=47612321 Points: 11 # Comments: 5
We built Postgres compatibility for our database and made it reusable libraries
Comments
Codex now offers more flexible pricing for teams
Codex now includes pay-as-you-go pricing for ChatGPT Business and Enterprise, providing teams a more flexible option to start and scale adoption.
WhatsApp Alerts 200 Users After Fake iOS App Installed Spyware; Italian Firm Faces Action
Meta-owned messaging platform WhatsApp said it alerted about 200 users who were tricked into installing a bogus version of its iOS app that was infected with spyware. According to reports from Italian newspaper La Repubblica and news agency ANSA, the vast majority of the targets are located in Italy. It's assessed that the threat actors behind the activity used social engineering
Significant Raise of Reports
61 points, 29 comments on Hacker News
New laws to make it easier to cancel subscriptions and get refunds
82 points, 31 comments on Hacker News
IBM Announces Strategic Collaboration with Arm
143 points, 76 comments on Hacker News
pGenie – SQL-first code generator for PostgreSQL (Haskell, Rust, Java)
Comments
Running out of Disk Space on Launch
Comments
Bringing Clojure programming to Enterprise (2021)
94 points, 29 comments on Hacker News
Packaging 128 languages with Nix
Comments
Telli (YC F24) is hiring engineers, designers, and more (on-site, Berlin)
1 points, 0 comments on Hacker News
Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword Exploit
Apple on Wednesday expanded the availability of iOS 18.7.7 and iPadOS 18.7.7 to a broader range of devices to protect users from the risk posed by a recently disclosed exploit kit known as DarkSword. "We enabled the availability of iOS 18.7.7 for more devices on April 1, 2026, so users with Automatic Updates turned on can automatically receive important security
Ruby 3.2 Is EOL: What You Actually Need to Do
Comments
r/programming bans all discussion of LLM programming
88 points, 60 comments on Hacker News
Subscription bombing and how to mitigate it
79 points, 57 comments on Hacker News
The future of code search is not regex – 100x faster than ripgrep
25 points, 14 comments on Hacker News
Show HN: NASA Artemis II Mission Timeline Tracker
21 points, 4 comments on Hacker News
Email obfuscation: What works in 2026?
39 points, 5 comments on Hacker News
Steam on Linux Use Skyrocketed Above 5% in March
192 points, 70 comments on Hacker News
Artemis II's toilet is a moon mission milestone
122 points, 48 comments on Hacker News
Aggregated from public RSS feeds & the Hacker News API · All links point to original sources · Clawship does not republish full articles