New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
The Hacker News

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

According to Cisco Talos, it's these URL-exposed webhooks – which make use of the same *.app.n8n [.]cloud subdomain – that ...
The Gaston Gazette

Custom Legal Marketing Publishes Largest-Ever Study of Law Firm URL Structure and Google Rankings

San Francisco, California – Custom Legal Marketing (CLM) has released the findings of a comprehensive study examining the relationship between URL structure and organic search rankings for law firm ...