Hackers exploited a compromised npm package to breach cloud systems and gain full AWS administrator access within 72 hours.
UNC6426 used stolen GitHub tokens from the 2025 nx npm breach to gain AWS admin access in under 72 hours, enabling data theft ...
Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.
The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...
Cloud attacks are getting faster and deadlier - here's your best defense plan ...
The Glassworm campaign has compromised over 151 GitHub repositories and npm packages using invisible Unicode payloads that ...
Attackers have hijacked 75 of 76 GitHub Actions tags for Aqua Security's Trivy scanner, distributing credential-stealing ...
OpenAI announced Thursday that it has entered into an agreement to acquire Astral, the company behind popular open source Python development tools such as uv, Ruff, and ty, and integrate the company ...
The exploit is now publicly available on GitHub, increasing the urgency for older iPhones and iPads to run the latest ...
The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...
A leaked iPhone exploit makes outdated iOS devices easy targets — update now or risk full data access from a simple malicious ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results