Bleeping Computer

Red Hat npm packages compromised to steal developer credentials

More than 30 npm packages under Red Hat's '@redhat-cloud-services' namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, ...
The Hacker News

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm

Compromised npm packages targeted Red Hat cloud services, enabling credential theft and expanding supply chain risks.
techzine

Microsoft discovers new npm attack in 14 packages

Microsoft has discovered a new supply chain attack in which an attacker published fourteen malicious npm packages within a few hours. The packages masqueraded as tools for OpenSearch, Elasticsearch, ...
InfoQ

Google Workspace CLI: Unified Command-Line Tool Built for Humans and AI Agents

Google has released a new CLI for Google Workspace, offering a unified interface for various services like Drive, Gmail, and ...
Memeburn

What Is OpenClaw? The Viral AI Agent With 346K GitHub Stars Explained

What is OpenClaw? Learn how this AI agent works, how to set it up step-by-step, and how it can help automate tasks across ...
National Security Journal on MSN

China’s hypersonic aircraft carrier-killer flies at Mach 10 and changes course mid-flight — and the US Navy is scrambling to stop it

When China rolled the DF-17 through Beijing, it was unveiling a weapon built for one purpose: to sink American carriers ...