The Hacker News

Alert: Malicious PyPI Package soopsocks Infects 2,653 Systems Before Takedown

Malicious PyPI package soopsocks downloaded 2,653 times before takedown, exfiltrating Windows data to Discord.
The Hacker News

ThreatsDay Bulletin: CarPlay Exploit, BYOVD Tactics, SQL C2 Attacks, iCloud Backdoor Demand ...

From unpatched cars to hijacked clouds, this week's Threatsday headlines remind us of one thing — no corner of technology is safe. Attackers are scanning firewalls for critical flaws, bending ...
InfoWorld

Intro to Nitro: The server engine built for modern JavaScript

Nitro.js is a JavaScript-based HTTP server. It builds on state-of-the-art components, focusing on performance, convention, and deployment. As a JavaScript developer, you want to know about Nitro ...

On GitHub: Numerous fakes of well-known Mac apps are circulating

In what appears to be a concerted effort, scammers are trying to distribute fake apps for Mac users. It is unclear what the purpose of this is.

North Korean Hackers Deploy New “AkdoorTea” Backdoor

North Korean hackers are intensifying their global campaign against cryptocurrency and Web3 developers, using a new backdoor called AkdoorTea to ...

Elon Musk's xAI lands US government contract to provide Grok chatbot at 42 cents per agency

The deal will give federal agencies access to Grok for Government, based on the Grok 4 and Grok 4 Fast models. It's valid for 18 months ...

Why CERT-In is warning startups and IT firms about ‘Shai-Hulud,’ a Dune-inspired malware

India’s cybersecurity agency warns of a fast-spreading npm supply chain worm, urging startups and ITes firms to secure credentials and audit dependencies.