Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...

Florida to execute killer 40 years after savage murder of elderly grocer

A crack addict named Melvin Trotter fatally stabbed 70-year-old Virgie Langford in the corner grocery store she ran for 50 years.
USA Today

'I'm not a monster': Oklahoma to execute Katrina evacuee for double murder

A Hurricane Katrina evacuee who became a death row inmate after killing two men in a hail of gunfire in Oklahoma City is set ...

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
CBS News

FBI executing search order connected with 2020 election at Fulton County elections center

Dan Raby, the senior digital producer for CBS News Atlanta, has been covering everything happening around Georgia for more than a decade. Agents with the Federal Bureau of Information are executing a ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
Santa Clara University

Capital Punishment: Our Duty or Our Doom?

About 2000 men, women, and teenagers currently wait on America's "death row." Their time grows shorter as federal and state courts increasingly ratify death penalty laws, allowing executions to ...