The never-ending supply chain attacks worm into SAP npm packages, other dev tools

Attackers infected all versions with the same credential-stealing malware that, on Wednesday, poisoned multiple npm packages ...
The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
HealthcareInfoSecurity

Linux 'Copy Fail' Flaw Delivers Root-Level Access to Distros

Patch all Linux kernels issued from 2017 onwards to fix a serious vulnerability in the kernel’s cryptography API that can be ...

Keep the Juice Flowing: The Best Home EV Chargers for 2026, Tested

Our team has tested the top home EV chargers on the market. Which is the best? Check out our top picks for charging your ...
Cybernews

One tiny exploit gives full Linux access: all kernels since 2017 are vulnerable

The critical "Copy Fail" bug (CVE-2026-31431) affects all Linux kernels since 2017, allowing unprivileged local users to gain ...
The Hacker News

ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories

SMS blasters, npm supply chain hits, and unpatched Windows flaws. Stay ahead of new phishing kits and exposed servers.
National Rugby League

NRL Casualty Ward: Kikau faces 12 weeks out; Surgery for Martin, Waddell

Bulldogs back-rower Viliame Kikau is facing up to 12 weeks on the sideline after surgery on the pectoral injury he suffered ...