Author: misha r
-
Massive Supply Chain Attack Hits Arch Linux Repository More than 400 packages in the Arch User Repository (AUR) have been compromised to distribute a Linux rootkit and infostealer malware, targeting developer credentials and access tokens. The attack, uncovered by the open-source intelligence community Independent Federated Intelligence Network (IFIN), represents a significant supply chain threat for…
-
Major Data Breach Hits University of Nottingham, Affecting Hundreds of Thousands The University of Nottingham confirmed on Wednesday that a cybercriminal group infiltrated its student records system, exposing sensitive personal data belonging to 454,600 current and former students across its UK, Malaysia, and China campuses. The university has reported the incident to the UK’s Information…
-
Malware Campaign Abuses Google Ad Domain to Bypass Enterprise Security Cybersecurity firm Huntress has uncovered an active malware campaign exploiting Google’s own advertising infrastructure to smuggle malicious payloads past enterprise security systems. The operation uses ad.doubleclick.net — a legitimate, widely trusted Google-owned domain — as a stepping stone in a multi-stage infection chain, effectively blinding…
-
A popular software tool used by developers around the world was briefly hijacked by suspected North Korean hackers, who turned it into a vehicle for stealing login credentials. Here’s what happened and why it matters. Based on the original report by Sam Sabin / Axios. What Happened? Hackers managed to break into the account of…
-
Anthropic accidentally shipped their full Claude Code source code inside an npm package. It was quickly removed, but not before developers mirrored it and spent a morning digging through it on Hacker News. Here’s what they found — in plain English. Based on the original analysis by Alex Kim. Poisoning Competitors’ Training Data Claude Code…