Tech Times

npm Supply Chain Attack: North Korea Backdoored 144 AI Packages in 88 Minutes

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
CoinDesk

Ethereum's biggest 'sandwich' bot drained of $7.5 million in ironic exploit

Blockaid said an attacker tricked Jaredfromsubway.eth into approving fake trading routes, then used those approvals to drain ...

Scotland expects: What is behind McTominay's understated World Cup?

Some are suggesting Scott McTominay has not had the expected impact for Scotland at the World Cup, but is that fair on the ...
Morning Overview on MSN

The fake-CAPTCHA trick spreading now asks you to paste a command that installs malware

The Federal Trade Commission issued a consumer alert in June 2026 warning that a new breed of fake CAPTCHA pop-ups is tricking Windows users into running malicious commands on their own computers. The ...
The Caledonian-Record

US-Iran talks begin Sunday in Switzerland as Tehran closes the strait over Lebanon fighting

Iran has closed the Strait of Hormuz again, citing Israeli attacks in Lebanon and U.S. "bad faith" in their interim agreement on the war. Iran's negotiators are heading to Switzerland ...

London's driverless revolution: Awe, anxiety and the unknown

What is surprising on the test drive is the level of complexity the AI-driven car can handle. At one point, a bus pulls in ...
Security Boulevard

SmartApeSG Launches Okendo Reviews Supply Chain Attack

IntroductionOn May 14, 2026, the Zscaler ThreatLabz team identified unusually high activity associated with the threat actor SmartApeSG to deploy malware. During our examination, we discovered ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

US and Iran sign initial deal to end war, ease sanctions and open strait as nuclear talks continue

Iran will immediately take steps to reopen the Strait of Hormuz once a tentative deal with the U.S. to end the war is signed ...
The Caledonian-Record

Authorities say they disrupted planned drone, gun attack on White House UFC cage-fighting show

Court papers say law enforcement officials disrupted a planned attack targeting the UFC cage-fighting show staged at the White House this past weekend. Papers unsealed Tuesday say plotters spoke of ...

Over 1 million WordPress sites at risk after popular plugins hacked

Three popular plugins served malicious JavaScript through a compromised CDN.

WordPress Plugins: Supply Chain Attack Puts 1.2 Million Sites at Risk

In a supply chain attack, attackers install backdoors through the WordPress plugins OptinMonster, TrustPulse, and PushEngage.