New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
SecurityWeek

North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks

North Korean hackers used AppleScript and ClickFix in recent attacks targeting macOS systems at financial organizations.

How A Roblox Cheat Download Triggered A $2 Million Hack At Vercel

How A Roblox Cheat Triggered A $2 Million Breach At Vercel. Why The Vercel Incident Changes The Economics Of Enterprise AI ...
People

Jean Smart Teases 46-Year Age-Gap Romance with Christopher Briney in Hacks

The 'Summer I Turned Pretty' star joins the final season of the HBO Max comedy as a love interest to Smart's Deborah Vance Julia Moore is a TV Writer-Reporter at PEOPLE. She has been working at PEOPLE ...
AOL

This Trump account hack could turn small savings into a tax-free fortune — here’s how it works and who can benefit

A new type of savings account tied to children could quietly become one of the most powerful long-term wealth-building tools in the U.S. Trump accounts are tax-advantaged accounts that will roll out ...
Ars Technica

DOJ confirms FBI Director Kash Patel’s personal email was hacked

Iran-linked hackers successfully broke into FBI Director Kash Patel’s personal email, the Department of Justice confirmed to Reuters on Friday. Reuters could not authenticate the leaked emails ...
Yahoo

‘Hacks’: HBO Max Finally Admits It’s Really Ending With Season 5 As Streamer Sets Premiere, Trailer

Add Yahoo as a preferred source to see more of our stories on Google. Earlier this month, Hannah Einbinder, one of the stars of HBO Max’s Hacks, was asked whether the comedy was ending with its fifth ...
Time

New ‘DarkSword’ Spyware Could Be Capable of Hacking Millions of iPhones, Researchers Find. Here’s What You Should Know

Hundreds of millions of iPhone users could be susceptible to hackers using a new malware tool called DarkSword if they have not recently updated their software, according to cyber-security researchers ...
TechCrunch

FBI seizes pro-Iranian hacking group’s websites after destructive Stryker hack

The FBI seized and took down two websites linked to the pro-Iranian hacktivist group Handala, which last week claimed responsibility for a destructive cyberattack against the U.S. medical tech giant ...
GameSpot

Resident Evil Movie Script Reportedly Leaks, And It's Shocking Some People

GameSpot may get a commission from retail offers. When Barbarian and Weapons director Zach Cregger signed on to helm the next Resident Evil movie, it was described as "a revamp that will take the ...
Lifehacker

10 Hacks Every TikTok User Should Know

TikTok is entertaining, addictive, and full of hidden features that can make the experience way more enjoyable—not to mention safer. Because for all its charms, TikTok is something of a privacy ...
WDTN

LexisNexis hack leaves 2 GB of data allegedly exposed

DAYTON, Ohio (WDTN) – The hacker group FulcrumSec is taking responsibility for a data breach of information from LexisNexis. The group claims to have hacked into the LexisNexis servers on Feb. 24. It ...