News

The Hacker News

Self-Replicating Worm Hits 180+ npm Packages to Steal Credentials in Latest Supply Chain Attack

"Each published package becomes a new distribution vector: as soon as someone installs it, the worm executes, replicates, and ...

Self-propagating supply chain attack hits 187 npm packages

Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...
Infosecurity Magazine

Shai-Hulud Worm Prowls npm to Steal Hundreds of Secrets

The bundle.js script is designed to steal npm, GitHub, AWS and GCP tokens. But it also installs TruffleHog – an open source ...
Krebs on Security

Self-Replicating Worm Hits 180+ Software Packages

The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...
CSO Online

Warning: Hackers have inserted credential-stealing code into some npm libraries

Dozens of npm libraries, including a color library with over 2 million downloads a week, have been replaced with novel ...
Security Boulevard

Detect Secrets in GitLab CI Logs using ggshield and Bring Your Own Source

Discover how to automatically detect secrets in GitLab CI logs using ggshield and GitGuardian's Bring Your Own Source ...

Dev tool startup Blacksmith Software gets $10M to accelerate continuous integration

A startup called Blacksmith Software Inc. wants to eliminate the inefficiencies around building and testing new software ...

Meta's new $800 glasses took the spotlight. Its AI ambitions stayed in the background.

Meta's Connect conference debuted $800 Ray-Ban smart glasses, but the company's new AI Superintelligence team was noticeably ...
TMCnet

Markup AI Secures $27.5 Million to Launch the Industry's First Content Guardian AgentsSM

Launched as a spinoff of NLP pioneer Acrolinx, Markup AI is the first to deliver an integrated suite of Content Guardian ...

Latest Visual Studio Code Update Makes You Code Smarter, Not Harder

Unleash smarter coding with Visual Studio Code’s latest update featuring AI integration, customizable tools, and workflow ...

Microsoft Commits Record $30 Billion to UK’s AI Infrastructure Expansion

Microsoft is investing $15B in UK AI and cloud, expanding data centers, Nvidia-powered supercomputers, and workforce to boost ...

AgentOps: Mantra For Success In The Agentic Economy

AgentOps isn't a platform. It's an attitude. One that signals your business is ready not just to be open to autonomy but to ...