News

Self-propagating supply chain attack hits 187 npm packages

Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...
Security Boulevard

Self-Replicating Worm Compromising Hundreds of NPM Packages

Hulud" has compromised hundreds of packages in the npm repository with a self-replicating worm that steals secrets like API key, tokens, and cloud credentials and sends them to external servers that ...
The Hacker News

Self-Replicating Worm Hits 180+ npm Packages to Steal Credentials in Latest Supply Chain Attack

The malicious JavaScript code ("bundle.js") injected into each of the trojanized package is designed to download and run ...

Google just took down 224 malicious apps with 38 million installs from the Play Store — how to stay safe

Security researchers have uncovered a new global ad fraud campaign that used seemingly innocent Android apps for nefarious purposes.

ITR Filing Due Date Extension 2025 Live: Will CBDT Extend the Deadline Again as CAs report I-T Portal not working, Payment issues; Dept Offers Help Desk; How to contact

As of September 15, around 7.08 crore ITRs have been filed, while around 6 crore ITRs have been e-verified. Previously, the ...
Infosecurity Magazine

Shai-Hulud Worm Prowls npm to Steal Hundreds of Secrets

The bundle.js script is designed to steal npm, GitHub, AWS and GCP tokens. But it also installs TruffleHog – an open source ...