PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

Ladder Capital Corp (LADR) Q1 2026 Earnings Call Transcript

Good morning, and welcome to Ladder Capital Corp.'s Earnings Call for the First Quarter of 2026. As a reminder, today's call is being recorded. This morning, Ladder released its financial results for ...
Le Lézard

Vadzo Imaging Expands USB 3.2 Gen 1 Camera Portfolio with Integrated 9-Axis IMU

Vadzo Imaging is bringing 9-axis IMU integration to its Falcon USB 3.2 Gen 1 camera portfolio extending a capability ...

Another npm supply chain worm is tearing through dev environments

Yet another npm supply-chain attack is worming its way through compromised packages, stealing secrets and sensitive data as ...
The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
Scientific Research Publishing

The Optimization of Talent Selection System of MCC Jiangxi Copper Aynak Mining CO., LTD. ()

The mining project of MCC Jiangxi Copper Aynak Mining Co., Ltd. in Afghanistan is of strategic and economic importance. However, the region’s long-term conflict has disrupted the local talent ...