New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
The Caledonian-Record

APi Group Debuts on the Fortune 500 List

APi Group Corporation (NYSE: APG) (“APi” or the “Company”), a global, market-leading business services provider of safety and specialty services, today announced its debut on the 2026 Fortune 500 list ...
Tech Times

Cloudflare Buys VoidZero: Vite’s 130M Weekly Users Get a New Vendor-Neutrality Pledge

Cloudflare VoidZero acquisition gives a competing CDN governance of Vite, the open source JavaScript build tool with 130 ...
cryptopolitan

Attackers trojanized Arweave’s WeaveDB npm package to deploy malware

A Rust infostealer called IronWorm hid in 36 npm packages from the Arweave ecosystem. The malware self-replicated and then pushed backdated malicious commits across nine organizations. Developers who ...

Stripe and Google Tag Manager abused in new credit card theft scheme

The hackers abused legitimate platforms to run the credit card theft campaign.
Crowdfund Insider

Cybercriminals Exploit Fintech Platform Stripe in Credit Card Skimming Operation

An emerging wave of rather concerning online theft is leveraging one of the Fintech sector’s most widely used platforms in order to conceal and reportedly distribute malicious code designed to harvest ...
unite

Cloudflare Acquires VoidZero, Bringing the Team Behind Vite Into Its Developer Platform Ambitions

Founded by Evan You, VoidZero was created with the goal of building a unified, high-performance JavaScript toolchain. Rather than focusing on a single framework, the ...

18 Minnesota companies make Fortune 500 as state adds one to roster

Minnesota gained strength on this year's Fortune 500 list, with 18 companies based here included on the prestigious ranking — ...

Fake Claude Code Installers Deliver Credential-Stealing Malware

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other ...

ReleasePad Adds Machine-Readable Changelog Output for AI Assistants

The release-notes platform now publishes every update through three surfaces: a public page, an in-app widget, and a ...

Fingerprint launches AI Assistant Detection to spot traffic from ChatGPT, Gemini and Claude

The first, AI Assistant Detection, gives businesses real-time visibility into traffic from major AI assistants, including ...