The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...

Trump insists Iran deal will open Strait of Hormuz 'toll-free' as he meets world leaders

But Donald Trump also called the fighting in Lebanon as "the minor war" and described the Iranian-backed group Hezbollah as ...

Rockville startup Quantum Space plans to go public via SPAC merger

It's becoming a busier year for IPOs of D.C-area companies. A Rockville space tech company whose CEO is a former NASA chief ...

TD revamps capital markets leadership with new president, investment banking head

Bank has beefed up its capital markets footprint, largely through the acquisition of New York-based investment bank Cowen Inc ...

Chrome for macOS soundly beats browser benchmark records

Google has set new browser performance records for Chrome following a year of improvements, with the latest results made ...
Tech Times

SVG Phishing Emails Bypass Email Security: SANS Flags New MIME-Type Evasion

SVG phishing email attacks are bypassing enterprise email security gateways by hiding JavaScript inside image files and ...
Courthouse News Service

Second Circuit takes another shot at NBA data tracking class action

The NBA argues the federal appeals court is bound by circuit precedent to carve out this type of Meta Pixel data disclosure ...

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...

Elon Musk becomes world's first trillionaire as SpaceX shares soar on stock market debut

The company's shares were trading at $160.95 each (£120) at the market's close on Friday, above the company's estimated ...
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
The Caledonian-Record

Platner seeks Democratic nomination for US Senate to set up critical Maine race with Collins

Graham Platner is seeking to make a Democratic nomination for U.S. Senate official in advance of one of the most anticipated contests of the year. Platner is a brash political ...