News

The Hacker News16h

GPUGate Malware Uses Google Ads and Fake GitHub Commits to Target IT Firms

GPUGate malware uses Google Ads and fake GitHub commits to steal data from IT firms since Dec 2024, bypassing sandboxes and GPU-lacking systems.
Krebs on Security8h

18 Popular Code Packages Hacked, Rigged to Steal Crypto

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...
Queerty7h

Scott Bessent’s velvet rage blows up ultra-exclusive MAGA dinner party: “I’m gonna punch you in the f****** face!”

The setting of the confrontation, a fancy social club for the MAGA uberrich, flies in the face of the movement’s so-called ...
Security Boulevard16h

APT37 Targets Windows with Rust Backdoor and Python Loader

IntroductionAPT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima) is a North Korean-aligned threat actor active since at least 2012. APT37 primarily targets South Korean individuals ...
InfoWorld10h

Groovy 5 expands Java and JDK support

Latest release of the JVM language also features hundreds of new and improved extension methods including 10x faster arrays.
Tech Xplore on MSN16h

'Vibe coding' enables non-programmers to create functional applications

Vibe coding. It's a term that's bubbling around to describe a new wave of app creation. It means instead of writing code line ...

Software packages with more than 2 billion weekly downloads hit in supply-chain attack

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

Crypto users urged to take extreme care as NPM attack hits core JavaScript libraries

Hackers hijacked NPM libraries in a massive supply chain attack, injecting malware that swaps crypto wallet addresses to steal funds.