The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

Lazarus-linked macOS malware hits crypto and fintech firms

Security researchers have linked a new macOS malware campaign to the Lazarus Group, the North Korea-linked hacking operation ...

Beyond passwords: How to protect a Binance account from common attacks

While blockchain systems are designed with strong security features, the "human element" is usually where things go wrong.
Taarifa Rwanda

Inside the Equity Bank Heist — Part 3: The Inside Job, the Erased Logs, and Four Hundred People Still Holding the Money

They did not stumble into this. Every move was planned, every wallet pre-selected, every transfer timed to the second. As ...

AI Tools Are Helping Mediocre North Korean Hackers Steal Millions

One group of hackers used AI for everything from vibe coding their malware to creating fake company websites—and stole as ...
Bleeping Computer

Kyber ransomware gang toys with post-quantum encryption on Windows

A new Kyber ransomware operation is targeting Windows systems and VMware ESXi endpoints in recent attacks, with one variant ...

New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.

Government warns Android users about new dangerous virus: How to stay safe

The Indian government has issued a fresh warning for Android smartphone users about a dangerous malware that disguises itself ...
CoinDesk

The Protocol: Kelp DAO exploited for $292 million

Crypto bridge hacks like the $292 million Kelp DAO exploit keep happening because bridges rely on trusted intermediaries and ...
CoinDesk

Crypto Long & Short: Protecting the people building DeFi infrastructure

There has been a consistent uptrend in traditional finance companies announcing DeFi-related initiatives, and it’s exciting ...