GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

LeakNet ransomware uses ClickFix and Deno runtime for stealthy attacks

The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a ...

ClawHavoc Malware Found in 539 OpenClaw Skills, ClawSecure Reports

Audit identifies credential harvesting, C2 callbacks, and data exfiltration patterns across 18.7% of the most popular ...
TechJuice

GlassWorm Malware Silently Infects Hundreds of Python Projects

GlassWorm attack uses stolen GitHub tokens to inject malware into Python repositories, exposing developers to supply chain risks.

Chainguard Launches the First Unified Repository for Secure-by-Default Open Source Artifacts

Chainguard, the trusted source for open source, today announced Chainguard Repository, a single Chainguard-managed experience for pulling secure-by-default open source containers, dependencies, OS ...
The Hacker News

LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader

LeakNet uses ClickFix via compromised sites to gain access, enabling stealth attacks and scalable ransomware operations.

Patient Protect Launches Signal, a Free Healthcare Cybersecurity and HIPAA Intelligence App for Providers

Free mobile app delivers breach intelligence, compliance tools, and shared threat awareness for independent healthcare ...
Security Boulevard

What the Recent PayPal Breach Says About Modern Web Risk

TL;DR A coding flaw in PayPal’s loan app went undetected for nearly six months, exposing sensitive customer data — not because prevention controls failed catastrophically, The post What the Recent ...

Google Chrome has security flaws that are being actively exploited

Google Chrome, South Africa’s most popular Internet browser, is rushing to patch two high priority bugs that could have serious consequences for users.