News

SecurityWeek

Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit

Shai-Hulud is the third major supply chain attack targeting the NPM ecosystem after the s1ngularity attack and the recent ...
Krebs on Security

Self-Replicating Worm Hits 180+ Software Packages

The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...
CSO Online

Docker malware breaks in through exposed APIs, then changes the locks

The new variant of Docker-targeting malware skips cryptomining in favor of persistence, backdoors, and even blocking rivals ...
SecurityWeek

Over 6,700 Private Repositories Made Public in Nx Supply Chain Attack

Hackers used the secrets stolen in the recent Nx supply chain attack to publish over 6,700 private repositories publicly.

AI-powered malware hit 2,180 GitHub accounts in “s1ngularity” attack

Investigations into the Nx "s1ngularity" NPM supply chain attack have unveiled a massive fallout, with thousands of account ...
GitHub

OSCam-EMU For All Linux Base Box

There was an error while loading. Please reload this page. OSCam EMU with libcurl-libdvbcsa-StreamRelay+Icam-upx-PowerVu Auto + PowerVu linuxsat-support.com label ...
GitHub

Tenstorrent Blackhole P100/P150 Linux demo

This demo downloads OpenSBI, Linux and userspace images, configures them on the Blackhole hardware and starts the X280 cores to boot them. Software refers to these windows as TLBs Blackhole has 2MB ...
The Hacker News

North Korea Uses GitHub in Diplomat Cyber Attacks as IT Worker Scheme Hits 320+ Firms

North Korean threat actors have been attributed to a coordinated cyber espionage campaign targeting diplomatic missions in their southern counterpart between March and July 2025. The activity ...