SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
Dark Reading

'Hades' Campaign Against PyPI Puts New Spin on Shai-Hulud

Threat actors have struck the software supply chain yet again, this time hitting the Python Package Index (PyPI) with Mini Shai-Hulud in an attempt to spread poisoned code. In the latest campaign, ...
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
The Hacker News

ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...
New Scientist

Does gravity create reality? A shocking path to a theory of everything

Sometimes, you work tirelessly on a problem, only to realise you have been going about it all backwards. Imagine trying to fit a massive antique piano through a tiny doorway. You have tried everything ...
The Independent

Pentagon releases latest batch of UFO files and videos including intelligence officer who saw ‘orbs’

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or ...
CNBC

OpenAI to confidentially file for IPO as soon as Friday: Source

OpenAI is preparing to confidentially file a draft of its IPO prospectus as soon as Friday, CNBC confirmed. The AI company is working with banks including Goldman Sachs and Morgan Stanley to prepare ...