The Hacker News

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

Five malicious Rust crates and an AI bot exploited CI/CD pipelines and GitHub Actions in Feb 2026, stealing developer secrets ...
Decrypt

Crypto Gift Card Platform Bitrefill Discloses Hack, Points Finger at North Korean Groups

Bitrefill, which lets users swap Bitcoin, Dogecoin and other crypto assets for gift cards, disclosed a breach that took place ...
The Hacker News

Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays

Rust-based VENON malware targets 33 Brazilian financial platforms using advanced evasion and overlays, enabling credential ...

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

Sweden probes reported leak of e-government platform source code

Hackers claimed to have leaked the source code of the Swedish e-government services platform, creating widespread concerns of more incoming exploits through unpatched vulnerabilities.

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible ...

AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
Better Homes & Gardens on MSN

Amazon announced the return of its big spring sale—and you can already shop these 57 deals, up to 75% off

Shop early deals on Dyson, Yankee Candle, Kate Spade, and more.
Hackaday

This Week In Security: Plenty Of Patches, Replacing Old Gear, And Phrack Calls For Papers

When Friday the Thirteenth and Patch Tuesday happen on the same week, we’re surely in for a good time. Anyone who maintains any sort of Microsoft ecosystem knows by now to brace for impact ...