The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

New ‘Pack2TheRoot’ flaw gives hackers root Linux access

A new vulnerability dubbed Pack2TheRoot could be exploited in the PackageKit daemon to allow local Linux users to install or ...

Trigona ransomware attacks use custom exfiltration tool to steal data

Recently observed Trigona ransomware attacks are using a custom, command-line tool to steal data from compromised ...
The Next Web

OpenAI’s Codex for Mac now watches your screen to build context, but sends the screenshots to its servers first

Codex's Chronicle feature captures Mac screenshots, processes them on OpenAI's servers, and stores unencrypted text memories ...

Unpacking claim US Army 'nuclear chief' Andrew Hugg revealed secrets to undercover reporter

The rumor stems from a report by the Citizen Journalism Foundation. Conservative activist James O'Keefe leads the ...