The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...

Microsoft patches Exchange Server zero-day exploited in attacks

Microsoft has patched an actively exploited Exchange Server vulnerability that allows threat actors to execute arbitrary JavaScript code in cross-site scripting (XSS) attacks targeting Outlook Web ...
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
InfoWorld

Meet Hades: The malware that lies to AI security agents

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
The Register-Herald

Prep baseball state tournament: Crusaders' season ends vs. Gilmer County

Roddick Page’s two-run double highlighted No. 4 Gilmer County’s three-run fourth inning as part of 10 unanswered runs in a 10 ...
Tech Times

Cloudflare Buys VoidZero: Vite’s 130M Weekly Users Get a New Vendor-Neutrality Pledge

Cloudflare VoidZero acquisition gives a competing CDN governance of Vite, the open source JavaScript build tool with 130 ...
The Hacker News

Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

Microsoft confirms it temporarily removed GitHub repos after Miasma worm compromised 73 of its open-source projects to inject ...
Telegraph Herald

Prep baseball: Putnam County tops Galena in supersectional

The best season in Galena High School baseball history came just one win short of the Illinois Class 1A state tournament.

Websites have a new way to spy on visitors: Analyzing their SSD activity

Now sites have a new way to spy on their visitors: measuring subtle interactions with their solid-state drives. The technique ...
LGBTQ Nation

GOP enraged over bill to make parentage laws more LGBTQ+-inclusive: “Woke culture run amok”

Republicans are up in arms over a New York state bill seeking to make state child custody and parental laws more inclusive to ...
Telegraph Herald

MLB roundup: Lars Nootbaar's 8th inning HR lifts Cardinals over Reds 6-5

Lars Nootbaar hit a go-ahead two-run homer in the eighth inning and Jordan Walker also homered as the St. Louis Cardinals ...