The First AI-Crafted Zero-Day Was Easy to Spot. The Next One May Not Be

Google reported the first confirmed AI-assisted zero-day exploit, raising new concerns about logic flaws, supply chain risk, ...

Shai-Hulud keeps burrowing: 314 npm packages infected after another account compromise

Popular JavaScript modules including size-sensor and echarts-for-react hit as hijacked account closed GitHub warnings ...

Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

Forcepoint details TeamPCP supply chain attack that turned LiteLLM into a credential stealer

A new report out today from cybersecurity company Forcepoint LLC’s X-Labs research team details a supply chain attack that ...
SecurityWeek

First Shai-Hulud Worm Clones Emerge

A threat actor started using the Shai-Hulud worm in attacks only days after the malware’s source code was released.
SecurityWeek

TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code

The TeamPCP hacking group has released the Shai-Hulud worm’s source code and is challenging miscreants to use it in attacks.
Crikey

Angus Taylor links housing pain with ‘mass migration’ in post-budget pledge

The opposition leader has pledged to end 'mass migration', suggesting that migrant numbers should be linked to the number of ...