The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.
The Caledonian-Record

MintMCP Launches Enterprise Governance Platform for AI Agents and MCP Servers

MintMCP today launched its enterprise governance platform for AI agents and MCP servers, enabling teams to deploy, monitor, and secure agent infrastructure at scale. The platform enables organizations ...
Cyber Daily

Hacked: New SmarterTools SmarterMail vulnerability exploited in the wild

The US cyber agency adds a new SmarterMail vulnerability to its known exploited list, alongside a React Native Community CLI ...