The Hacker News

New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing

FROST uses JavaScript and OPFS SSD timing to identify websites at 88.95% F1, exposing cross-browser privacy leaks.

Disorder breaks out in Belfast after man charged over knife attack

A 30-year-old man has been charged with attempted murder following a knife attack in north Belfast on Monday night. He has ...
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...

Miasma worms its way onto GitHub as attack kit goes open source

As if the Miasma situation weren't bad enough, now this weapon is spreading like wildfire. Someone open sourced the entire ...
The Caledonian-Record

US and Iran launch airstrikes after Trump blamed Tehran for downing Army helicopter

Kuwaiti air defenses opened fire Wednesday as the small Mideast nation came under attack from Iran. Iran had said it targeted the nation to retaliate over American airstrikes earlier Wednesday ...
InfoWorld

Meet Hades: The malware that lies to AI security agents

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

Bowen: 'Middle East is in turmoil' as Iran and Israel attack each other

The BBC's international editor, Jeremy Bowen, said the public are "right to be worried" as the consequences of the war will ...

Red Hat hit by npm supply‑chain attack - here's how to stay safe

Red Hat hit by npm supply‑chain attack - here's how to stay safe ...

Attack on GitHub.dev steals OAuth token for all repos

The web version of the VS Code editor on GitHub.dev had a security vulnerability that allowed attackers to take over all of a ...
The Caledonian-Record

Trump says US 'must' respond after Iran shot down US Army helicopter near Strait of Hormuz

U.S. President Donald Trump says Iran was responsible for shooting down an American military helicopter near the Strait of Hormuz and that the U.S. “must” respond to the attack. Trump ...