The Hacker News

UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device

UNC4899 breached a crypto firm via AirDrop malware and cloud exploitation in 2025, stealing millions through Kubernetes and ...
InfoWorld

The ‘toggle-away’ efficiencies: Cutting AI costs inside the training loop

You don't need the newest GPUs to save money on AI; simple tweaks like "smoke tests" and fixing data bottlenecks can slash ...
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...
Dark Reading

Cyber OpSec Fail: Beast Gang Exposes Ransomware Server

Files on a central cloud server used by the ransomware group highlight a systematic, aggressive attack on network backups as ...

Google: Cloud attacks exploit flaws more than weak credentials

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud ...

"CanisterWorm" supply chain malware attacks npm

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, ...

Google report: AI is accelerating cloud cyberattacks, and one weak link stands out

Google report: AI is accelerating cloud cyberattacks, and one weak link stands out ...
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...
Dark Reading

SideWinder Espionage Campaign Expands Across Southeast Asia

The suspected India-linked threat group targets governments and critical infrastructure using spear-phishing, old flaws, and ...
Semiconductor Engineering

AI Design Reshapes Data Management

Integrating AI into chip workflows is pushing companies to overhaul their data management strategies, shifting from passive ...