Crime crew impersonates help desk, abuses Microsoft Teams to steal your data

A previously unknown threat group using tried-and-tested social engineering tactics - Microsoft Teams chat invitations and ...
SecurityWeek

UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware

The threat actor infected victims with the Snow malware family – Snowbelt, Snowglaze, and Snowbasin – for persistent access.
The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.
eLife

The long-range gene regulatory landscape of cerebellar granule neuron progenitors

Neuronal specification, expansion and differentiation are tightly regulated by the concerted actions of transcription and chromatin modifying factors that are recruited to regulatory elements in the ...
AEC Magazine

Eleven themes for NXT BLD 2026

With AEC tech arriving at unprecedented pace, NXT BLD 2026 is the perfect place to stay ahead and help shape what’s next ...
The Eastern Herald

Microsoft Teams Exploited in Global UNC6692 Cyberattacks as SNOW Malware Infiltrates Enterprise Networks Through Helpdesk Impersonation

A cybercrime group impersonates IT helpdesk staff on Microsoft Teams, deploying SNOW malware to steal credentials and ...
Hackaday

Building An IBM PCjr BIOS From Source Using Original Printed Source Code

As unloved as IBM’s PCjr was, with only a one-year production run, it’s hard to complain about the documentation available ...

PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

Critical vulnerability in Ruby's standard library ERB:attackers can execute code

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...
Hackaday

CAN Bus Analyzer Runs In Your Browser

If you’ve got a modern car, truck, or tractor, it’s probably got a CAN bus or three that is bouncing data all around the ...