The Hacker News

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

Multiple npm supply chain attacks used 50+ poisoned packages to spread IronWorm, a Rust-based stealer, and a Miasma worm ...

Woman's cold case solved by Milwaukee investigators, gives family closure

Berline Trammel was found in the Milwaukee River in 1982. Exactly 44 years later, her identity was confirmed by investigators ...
The Hacker News

Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content

Weedhack malware targets Minecraft players via YouTube and SEO poisoning since Jan 2026, enabling credential theft and remote ...
Opinion
HackadayOpinion

This Week In Security: Messing With AI, 7Zip And Notepad++ Vulnerabilities, HTTP2 Bomb, And More

With the rise of AI coding assistants continuing apparently unabated, some project maintainers have begun striking back. Ars Technica reports on projects putting hostile directions into the ...
Bleeping Computer

Red Hat npm packages compromised to steal developer credentials

More than 30 npm packages under Red Hat's '@redhat-cloud-services' namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, ...

Probably not, but it could be (2026)

A singular instant within the life of someone who cannot recall their past, trapped within the tactille universe. A ...

Meet Wander, a StumbleUpon-inspired tool for discovering the ‘small web’

This open-source community project lets you create a StumbleUpon-like experience for recommending your favorite sites.

Security News This Week: Crypto-Funded Chinese Peptide Labs Are Booming

Plus: Hackers use Meta’s AI bots to hack Instagram accounts, Anthropic helps NSA hackers, a decades-long GPS satellite ...
LGBTQ NationOpinion

GOP goes all in on gay jokes, court rejects trans military ban & Pride Month is off to a rocky start

That’s the question the GOP has been focusing on in this race, with GOP state Attorney General Ken Paxton mocking Talarico ...

Fake Claude Code Installers Deliver Credential-Stealing Malware

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other ...

Decades later, search continues for answers in Arizona journalist's murder

A car bomb killed Arizona Republic reporter Don Bolles in 1976. Five decades later, the hunt for the truth about his murder ...

Released Mandelson messages 'embarrassing', says minister, but defends government record

Lord Mandelson made the comments in an exchange with minister Pat McFadden, which is included in more than 1,000 pages of ...