Engineering &
Security Wire
Curated from Hacker News, Lobsters, Krebs on Security, and other top sources. Updated every 6 hours.
Guy Goma's Accidental BBC Interview Lives on After 20 Years
76 points, 15 comments on Hacker News
My first in-prod corrupted hard drive problem
Article URL: https://blog.pavementlink.ch/2026/05/07/my-first-corrupted-hard-drive-problem/ Comments URL: https://news.ycombinator.com/item?id=48067686 Points: 29 # Comments: 21
Driver accused of DUI tracks missing laptop to Illinois State trooper's house
333 points, 240 comments on Hacker News
Google broke reCAPTCHA for de-googled Android users
Related: Google Cloud fraud defense, the next evolution of reCAPTCHA - https://news.ycombinator.com/item?id=48039362 also: Google Cloud Fraud Defence is just WEI repackaged - https://news.ycombinator.com/item?id=48063199 Comments URL: https://news.ycombinator.com/item?id=48067119 Points: 211 # Comments: 61
TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms
Threat hunters have flagged a previously undocumented Brazilian banking trojan dubbed TCLBANKER that's capable of targeting 59 banking, fintech, and cryptocurrency platforms. The activity is being tracked by Elastic Security Labs under the moniker REF3076. The malware family is assessed to be a major update of the Maverick, which is known to leverage a worm called SORVEPOTEL to spread via
Teaching Claude Why
Article URL: https://www.anthropic.com/research/teaching-claude-why Comments URL: https://news.ycombinator.com/item?id=48066592 Points: 25 # Comments: 1
AI is breaking two vulnerability cultures
Article URL: https://www.jefftk.com/p/ai-is-breaking-two-vulnerability-cultures Comments URL: https://news.ycombinator.com/item?id=48066524 Points: 148 # Comments: 62
Apple, Intel have reached preliminary chip-making deal
Article URL: https://www.reuters.com/business/apple-intel-have-reached-preliminary-chip-making-deal-wsj-reports-2026-05-08/ Comments URL: https://news.ycombinator.com/item?id=48066169 Points: 169 # Comments: 110
How do I deal with memory leaks? (2022)
Article URL: https://www.stroustrup.com/bs_faq2.html#memory-leaks Comments URL: https://news.ycombinator.com/item?id=48065916 Points: 78 # Comments: 66
What We Lost the Last Time Code Got Cheap
Comments
The React2Shell Story
80 points, 5 comments on Hacker News
Amália and the Future of European Portuguese LLMs
28 points, 6 comments on Hacker News
Why age assurance laws matter for developers
Youth safety requirements are moving down the tech stack to operating systems and app stores—raising new questions for open source developers. The post Why age assurance laws matter for developers appeared first on The GitHub Blog.
Cartoon Network Flash Games
Article URL: https://www.webdesignmuseum.org/flash-game-exhibitions/cartoon-network-flash-games Comments URL: https://news.ycombinator.com/item?id=48065360 Points: 229 # Comments: 71
Can LLMs model real-world systems in TLA+?
48 points, 6 comments on Hacker News
Show HN: GETadb.com – every GET request creates a DB
Hey HN! We made GETadb.com, so it's easier to get agents to build you full stack apps. You don't need to give them any credentials. Just by loading a GET request, they get access to a database, a sync engine, and abstractions for auth, presence, and streams. To see what the agent sees, you can load https://getadb.com/new There's two fun things about how it's implemented: 1. If you curl the home page, it the agent content rather than human content. We do this by detecting the 'Sec-Fetch-Mode' header. It's not perfect, but gets the job done for Claude Code et al. 2. For an agent to spin up an app, they make _two_ fethes. (1) getadb.com/guide tells them to generate a uuid, and fetch (2) getadb.com/provision/. We did this, because just about half of the popular web-based app builders cache URLs globally, even if you return no-store headers. To get around this we just instruct the agent to generate unique URLs You may wonder: Why GET requests, rather than POST requests? It's because then yo
Lakebase architecture delivers faster Postgres writes
79 points, 21 comments on Hacker News
The `Sync` bound nobody asked for
Comments
Serving a Website on a Raspberry Pi Zero Running in RAM
Article URL: https://btxx.org/posts/memory/ Comments URL: https://news.ycombinator.com/item?id=48064312 Points: 32 # Comments: 7
Fake Call History Apps Stole Payments From Users After 7.3 Million Play Store Downloads
Cybersecurity researchers have discovered fraudulent apps on the official Google Play Store for Android that falsely claimed to offer access to call histories for any phone number, only to trick users into joining a subscription that provided fake data and incurred financial loss. The 28 apps have collectively racked up more than 7.3 million downloads, with one of them alone accounting for over
How researchers are using GitHub Innovation Graph data to reveal the “digital complexity” of nations
Researchers share in an interview how they used GitHub data to predict GDP, inequality, and emissions in ways that traditional economic data misses, along with our Q4 2025 data release. The post How researchers are using GitHub Innovation Graph data to reveal the “digital complexity” of nations appeared first on The GitHub Blog.
How GitHub Is Securing Agentic Workflows in Modern CI CD Systems
GitHub detailed a defense-in-depth security architecture for agentic workflows in CI/CD pipelines, focusing on isolation, constrained execution, and auditability. The design aims to safely integrate autonomous AI agents while mitigating risks like prompt injection, privilege escalation, and unintended actions, using sandboxed environments, restricted permissions, and full execution traceability. By Leela Kumili
Show HN: Git for AI Agents
hi guys. been working on something i think is fundamentally missing in today's workflow with ai agents. vcs. i find myself struggling with questions that agents can't answer like "why did you do it?", "when did u delete this folder? why?", etc. or trying to /rewind (after a /compact...) or basically `bisect` to find when and why something was done by the agent in the current / previous session. just like git did for code, i think we are the same core capabilities with ai agents so... i developed an open source solution for that (currently supporting claude code) would love to get feedback, contribution or maybe other ideas or solutions you find for those problems. Comments URL: https://news.ycombinator.com/item?id=48063548 Points: 21 # Comments: 12
PC Engine CPU
Article URL: https://jsgroth.dev/blog/posts/pc-engine-cpu/ Comments URL: https://news.ycombinator.com/item?id=48063521 Points: 45 # Comments: 5
Tesla is recalling its cheaper Cybertruck because the wheels might fall off
Article URL: https://www.theverge.com/transportation/926741/tesla-cybertruck-cheaper-recall Comments URL: https://news.ycombinator.com/item?id=48063240 Points: 131 # Comments: 125
Google Cloud Fraud Defence is just WEI repackaged
Article URL: https://privatecaptcha.com/blog/google-cloud-fraud-defence-wei/ Comments URL: https://news.ycombinator.com/item?id=48063199 Points: 54 # Comments: 15
The Boring Part of Bell Labs (2025)
6 points, 0 comments on Hacker News
Just Fucking Use Go
Comments
Presentation: Leadership in AI-Assisted Engineering
Justin Reock discusses the reality of AI’s impact on engineering, moving past anecdotes to hard data from DORA and DX research. He explains the "GenAI Divide" - where 95% of pilots fail - and shares how leaders can use the SPACE and Core 4 frameworks to measure true ROI. He explains how to balance speed with quality, reduce developer fear, and apply agentic solutions across the entire SDLC. By Justin Reock
A web page that shows you everything the browser told it without asking
Article URL: https://sinceyouarrived.world/taken Comments URL: https://news.ycombinator.com/item?id=48062178 Points: 99 # Comments: 58
Aggregated from public RSS feeds & the Hacker News API · All links point to original sources · Clawship does not republish full articles