The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

Pythons are moving north in Florida. Is Brevard County next?

Pythons are spreading north in Florida, adapting to cold by using burrows. Scientists warn Brevard County is at risk.

Trigona ransomware attacks use custom exfiltration tool to steal data

Recently observed Trigona ransomware attacks are using a custom, command-line tool to steal data from compromised ...
The Hacker News

Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2

Tropic Trooper used trojanized SumatraPDF and GitHub C2 in 2024 to deploy AdaptixC2, enabling covert VS Code tunnel access.

'Explore the Lab' quest walkthrough in Tides of Tomorrow

The "Explore the Lab" quest in Tides of Tomorrow is all about finding the correct sample at the Lazarus Facility. Unless ...

New GopherWhisper APT group abuses Outlook, Slack, Discord for comms

A previously undocumented state-backed threat actor named GopherWhisper is using a Go-based custom toolkit and legitimate ...
CoinDesk

The $292 million Kelp DAO exploit shows why crypto bridges are still one of the industry's weakest links

The problem is structural and as long as bridges depend on complex systems with shared infrastructure and hidden trust ...
WeLiveSecurity

GopherWhisper: A burrow full of malware

ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian ...

‘Secret Lives of Mormon Wives: Orange County’ spinoff confirmed with Bobbi Althoff, Aspyn Ovard and more

Meet the "new group of dynamic young mothers" with "scandals and secrets" whose Hulu show will drop on the streaming platform ...

Florida AG launches criminal investigation into ChatGPT over FSU shooting

Florida's attorney general is launching a criminal investigation into the alleged role of ChatGPT in a mass shooting at ...