SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
Dark Reading

Attackers Use AI to Automate EDR Evasion Testing

Python scripts were used to test malware against endpoint detection and response agents from Sophos, CrowdStrike, and Windows ...
CSO Online

Meet Hades: The malware that lies to AI security agents

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...

AI-built ransomware toolkit automates EDR evasion, AD discovery

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...

Patch AM: Plant a seed - A seed swap to kick off summer reading and 13 more events

Be sure to catch Community Singing Celebration With Heather Houston and the Joyful Voices Chorus! on the San Anselmo Patch calendar ...
bitcoin

Best Crypto Exchanges in Qatar

Qatar is embracing cryptocurrency trading despite a complex regulatory environment, with the Qatar Financial Centre (QFC) prohibiting local crypto trading operations. This guide breaks down the top ...
Medscape

Ethics: Today's Hot Topics

Robo-Ethicist Not Ready for Prime Time, Says Ethicist Ethicist Art Caplan discusses the use of artificial intelligence in medical ethics consults.