The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

New VENOM phishing attacks steal senior executives' Microsoft logins

Threat actors using a previously undocumented phishing-as-a-service (PhaaS) platform called "VENOM" are targeting credentials ...
GovInfoSecurity

Grafana AI Bug Leaks Data With Zero-Click Exploit

A Grafana AI flaw enables zero-click data exfiltration by hiding malicious prompts in URLs, said a Noma Security report.

Earth's microbes may hide a near-universal plastic-eating arsenal, with 600,000 proteins poised to attack waste

Researchers have identified more than 600,000 microbial proteins capable of breaking down natural and synthetic plastics, ...
Security Boulevard

Tropic Trooper Pivots to AdaptixC2 and Custom Beacon Listener

IntroductionOn March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speaking individuals. Our analysis of this sample ...
The Robot Report

Transitive Robotics announces Transitive 2.0 open-source robotics framework

Transitive 2.0 adds ClickHouse, Grafana, and Alertmanager, offering advanced storage and monitoring to help scale growing ...
MUO on MSN

I archive every webpage the moment I bookmark it and I've never lost a saved link since

Bookmarks break, this extension makes sure mine never do.
Morning Overview on MSN

Anthropic’s new AI model jolts software stocks as disruption fears rise

Software and data analytics stocks fell sharply in early April 2026 after Anthropic unveiled an expanded suite of AI tools ...