News

Krebs on Security

Self-Replicating Worm Hits 180+ Software Packages

The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...

Massive npm hack poisons 18 packages with billions of downloads

Aikido Security Ltd. today disclosed what is being described as the largest npm supply chain compromise to date, after ...

Software packages with more than 2 billion weekly downloads hit in supply-chain attack

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

JavaScript packages with billions of downloads were injected with malicious code in world's largest supply chain hack, geared to steal crypto — a phishing email is all it ...

JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.
Cryptopolitan on MSN

Don't fall victim to the new ‘billion dollar’ hack, federal agents warn

New Yorkers are on high alert after a warning about a hack that stole over $1 billion from American citizens, leading to a flurry of FBI alerts. State Attorney General Letitia James sounded the alarm, ...
PCMag on MSN

Hacker Pwns Programmer, Infects Widely Used Software With Malware

The malware was found in 18 npm packages that together are usually downloaded over 2 billion times per week. But the security community was quick to act.

It's taken three years to recover from China hack, election watchdog says

In the first interview about the hack, the commission's new boss admits that huge mistakes were made, but says the ...