The Hacker News

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across ...
PCMag

Man Used 373,000 Sites On Dark Web To Swindle Predators, Hackers

The 35-year-old suspect in China raked in an estimated $400,000 by creating a huge network of sites that dangled illegal ...

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
Hackaday

This Week In Security: Linux Flaws, Python Ownage, And A Botnet Shutdown

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...
PCMag

Cyber Chaos This Week: iPhones Under Attack, Android VPN Glitches, and the Free Parking Hack You Won't Believe

From mobile exploits to citywide chaos, this week's biggest cybersecurity stories affect everyone—including what you pay for ...

YouTube killed my comment alerts, so I vibe-coded a fix to get them back - in just 1 hour

With Gemini and a simple Python script, I rebuilt YouTube email alerts. Now I won't miss another comment. Here's how you can ...

New Android malware is built to scan your notes for sensitive details

Reports about Android malware infecting devices aren't all that new. There are scrapers, trojans, spyware, adware, and more, ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
Techlicious

FBI warns hackers may be using your home internet without you knowing

Criminals are routing cyberattacks through ordinary households using residential proxy networks. Learn how devices get ...
Hackaday

Building A Robot Partner To Play Air Hockey With

Air hockey is one of those sports that’s both incredibly fun, but also incredibly frustrating as playing it by yourself is a ...

The Invisible Heist: How North Korean Hackers Stole Millions Through an AirDrop

Hackers reached out to a developer at the firm they wanted to attack and pretended to want to collaborate with him on an open ...
TechCrunch

A suite of government hacking tools targeting iPhones is now being used by cybercriminals

Security researchers have identified a suite of powerful hacking tools capable of compromising iPhones running older software that they say has passed from a government customer into the hands of ...