The Hacker News

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

Multiple npm supply chain attacks used 50+ poisoned packages to spread IronWorm, a Rust-based stealer, and a Miasma worm ...

Hegseth attacks Europe over migration with beach 'invasion' D-Day speech

The US defence secretary was speaking in Normandy, 82 years after allied forces launched their operation to liberate ...

Attack on GitHub.dev steals OAuth token for all repos

The web version of the VS Code editor on GitHub.dev had a security vulnerability that allowed attackers to take over all of a ...

Iranian military says it's stopping strikes on Israel, but will resume if Israel attacks Lebanon

On Sunday, Trump had reportedly urged Israel not to retaliate. He now says both countries are "looking to do" an immediate ...

Red Hat hit by npm supply‑chain attack - here's how to stay safe

Days after IBM and Red Hat announced a master security plan for open-source software, Red Hat suffers a major breach of its ...
The Hacker News

Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content

Weedhack malware targets Minecraft players via YouTube and SEO poisoning since Jan 2026, enabling credential theft and remote ...
Bleeping Computer

New IronWorm malware hits 36 packages in npm supply-chain attack

A new supply-chain attack has infected 36 packages on the Node Package Manager (npm) index with infostealer malware called IronWorm. The malware targets 86 environment variables (key-value pairs) and ...

Hackers hijack thousands of sites for ClickFix and FakeUpdate attacks

A threat actor tracked as DriveSurge has been operating large-scale malware distribution campaigns using ClickFix and ...
Dark Reading

DriveSurge Hijacks Thousands of Sites for ClickFix, FakeUpdate Attacks

A sneaky IAB operation uses a malicious traffic distribution system (TDS) to redirect visitors of trusted websites to ones ...

Israel says it struck Iran after taking fire as Tehran vows ‘painful response’ for attack on Beirut

Israel struck Beirut without warning on Sunday morning, an action Iran warned would renew full-scale war across the Mideast ...

Ukraine launches new drone attack on St. Petersburg

A Ukrainian drone strike set ablaze an oil terminal in the city and hit a nearby naval base Wednesday, hours before the ...
The Register-Herald

Suspect in Taylor Swift Vienna concert attack plot convicted and sentenced to 15 years

An Austrian court has convicted a man of planning to attack a Taylor Swift concert in Vienna nearly two years ago. He was ...