Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...

Man pleads guilty to Snapchat hacking targeting Northeastern students

He was hired by a former Northeastern coach to hack the Snapchat accounts of women to obtain nude or semi-nude images.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
The Security Ledger

Technology’s “Upside Down”? Software Supply Chain

Stranger Things concept of the “Upside Down” is a useful way to think about the risks lurking in the software we all rely on.
GitHub

overturemaps-py

Overture Maps provides free and open geospatial map data, from many different sources and normalized to a common schema. This tool helps to download Overture data within a region of interest and ...
dlnews

A16z Crypto wants DeFi to ditch ‘code is law’ for ‘spec is law’ to combat $649m exploit problem

DeFi protocols must adopt a more principled approach to security to mature. They could use standardised specifications that constrain what a protocol is allowed to do. Many protocols are already ...
Android

Target Hack Claims Surface as Source Code Allegedly Listed for Sale Online

Hackers claim to be selling internal Target source code after posting samples online. The data allegedly includes developer files and system tools of a US retailer. This raises concerns about ...
heise online

BND should be allowed to hack IT giants and monitor internet nodes more closely

In the data centers of the Frankfurt Internet exchange point DE-CIX, where Europe's digital lifelines converge in the form of fiber optic cables, a security policy turning point is looming. What has ...