News

SecurityWeek

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker

A Chinese group has been targeting entities involved in US-China relations, economic policy, and international trade in a ...
CSO Online

Warning: Hackers have inserted credential-stealing code into some npm libraries

Dozens of npm libraries, including a color library with over 2 million downloads a week, have been replaced with novel ...
Infosecurity Magazine

Chinese AI Villager Pen Testing Tool Hits 11,000 PyPI Downloads

AI-native Villager, which automates Kali and DeepSeek penetration tests, has reached 11,000 PyPI downloads fueling dual-use ...

6 moves that could save your phone after a hack

From spotting red flags to wiping malware, these six moves show you how to fight back when hackers strike your phone ...

Meet BleachBit, the killer free app that cleans your Windows PC’s junk

For the first time in many years, the deletion specialist app Bleachbit released a new version. We take a closer look at ...
Cryptopolitan

Federal agents warns smartphone users of ‘billion dollar’ hack

New Yorkers are on high alert after a warning about a hack that stole over $1 billion from American citizens, leading to a ...
Hackaday

This Week In Security: NPM, Kerbroasting, And The Rest Of The Story

Two billion downloads per week. That’s the download totals for the NPM packages compromised in a supply-chain attack this ...

Don't tell Amazon but this secret Fire TV Stick hack is a game-changer

Tired of living within Amazon's walled-off streaming ecosystem? Fire TV Sticks run Android under the hood, making for an easy ...

A white-hat hacking gambit spawned $48 million in venture funding for cybersecurity startup Koi. Read its pitch deck.

Koi has raised $48 million to help companies protect against software add-ons, which are increasing in usage and can evade ...

Hackers left empty-handed after massive NPM supply-chain attack

The largest supply-chain compromise in the history of the NPM ecosystem has impacted roughly 10% of all cloud environments, ...
Live Bitcoin News

Ledger Warns of Massive Hack, Avoid Crypto Transactions Now

Ledger CTO cautions users to halt crypto transactions due to a mass NPM attack that hijacks wallets and loots money.

JavaScript packages with billions of downloads were injected with malicious code in world's largest supply chain hack, geared to steal crypto — a phishing email is all it ...

JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.