The Hacker News

⚡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and More

This week’s cybersecurity recap covers Firefox and Chrome bugs, EDR-killer tools, a TV botnet, an OpenBSD flaw, Android ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

Red Hat hit by npm supply‑chain attack - here's how to stay safe

Red Hat hit by npm supply‑chain attack - here's how to stay safe ...
ascopubs.org

Sentinel Lymph Node Biopsy in Early-Stage Breast Cancer: ASCO Guideline Update

ASCO Guidelines provide recommendations with comprehensive review and analyses of the relevant literature for each recommendation, following the guideline development process as outlined in the ASCO ...
Tech Times

npm Supply Chain Attack: North Korea Backdoored 144 AI Packages in 88 Minutes

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
BMJ

IOC consensus statement on relative energy deficiency in sport (RED-S): 2018 update

Correspondence to Dr Margo Mountjoy, Department of Family Medicine, Michael G. DeGroote School of Medicine, McMaster University, Hamilton, ON N2G 1C5, Canada; mmsportdoc{at}mcmaster.ca In 2014, the ...
BMJ

2023 International Olympic Committee’s (IOC) consensus statement on Relative Energy Deficiency in Sport (REDs)

Relative Energy Deficiency in Sport (REDs) was first introduced in 2014 by the International Olympic Committee’s expert writing panel, identifying a syndrome of deleterious health and performance ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...