News

Software packages with more than 2 billion weekly downloads hit in supply-chain attack

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

When mental-health diagnoses become brands, the real drivers of our psychic pain are hidden

The Mental Health Industrial Complex profits off the proliferation of psychiatric diagnoses, thrown around like buzzwords on ...

Massive npm hack poisons 18 packages with billions of downloads

Aikido Security Ltd. today disclosed what is being described as the largest npm supply chain compromise to date, after ...
Crypto News4d

“Avoid On-Chain Transactions”: Ledger CTO Issues Urgent Warning After JavaScript Attack

A JavaScript supply chain attack has delivered a crypto-clipper via 18 npm packages; Ledger’s CTO has warned ...
CSO Online4d

When AI nukes your database: The dark side of vibe coding

As developers lean on Copilot and GhostWriter, experts warn of insecure defaults, hallucinated dependencies, and attacks that ...
Krebs on Security4d

18 Popular Code Packages Hacked, Rigged to Steal Crypto

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...
Cryptopolitan on MSN1d

Researchers uncover new malware targeting crypto wallets

Mosyle security firm has discovered malware bypassing antivirus software on Windows, macOS, and Linux. The research firm ...