SAP npm Packages Compromised by “Mini Shai-Hulud” Credential-Stealing Malware

/in

Cybersecurity researchers are sounding the alarm about a new supply chain attack campaign targeting SAP-related npm Packages with credential-stealing malware.
According to reports from Aikido Security, SafeDep, Socket, StepSecurity, and Google-owned Wiz, the campaign – calling itself the mini Shai-Hulud – has affected the following packages associated with SAP’s JavaScript and cloud application

The Hacker News – ​Read More

Polymarket Rejects Data Breach Claims as Hacker Alleges 300K Records Stolen

/in

A hacker using the alias “Xorcat” claims to have breached Polymarket using API flaws, but research suggests the leak could be just data scraping incident.

Hackread – Cybersecurity News, Data Breaches, AI and More – ​Read More

Swiss police arrest 10 suspected members of Nigeria-linked crime group Black Axe

/in

Swiss and German law enforcement have arrested 10 suspected members of the Nigerian criminal network Black Axe, including a regional leader believed to oversee operations in Southern Europe.

The Record from Recorded Future News – ​Read More

Sri Lanka discloses another missing payment, days after hackers stole $2.5M from its finance ministry

/in

The government of Sri Lanka has lost more than $3 million in two recent, separate cybersecurity incidents as the country continues to recover from its 2022 debt crisis.

Security News | TechCrunch – ​Read More

These two critical Mac security features are off by default – how to turn them on and why you should

/in

You’re leaving your Mac exposed if you haven’t enabled these two security features.

Latest news – ​Read More

I’ve used Android Auto for years, and these 5 changes solved my biggest issues

/in

These simple adjustments can make a big difference to your Android road experience.

Latest news – ​Read More

5 ways your Windows updates are about to get a lot less painful

/in

Microsoft wants to fix ‘pain points’ in Windows 11 PCs. The first batch of changes, targeting the Windows Update experience, is hitting Insider preview channels and coming soon to your desktop.

Latest news – ​Read More

Hundreds of Internet-Facing VNC Servers Expose ICS/OT

/in

Forescout has identified tens of thousands of exposed RDP and VNC servers that can be mapped to specific industries.

The post Hundreds of Internet-Facing VNC Servers Expose ICS/OT appeared first on SecurityWeek.

SecurityWeek – ​Read More

Lotus Wiper Attack Targeted Venezuelan Energy Firms, Utilities

/in

An analysis of the destructive malware reveals sophisticated living-off-the-land (LotL) techniques and detailed strategies for the widespread deletion of data.

darkreading – ​Read More

Brinker Introduces a Novel Approach to Deepfake Detection

/in

WILMINGTON, Delaware, 29th April 2026, CyberNewswire

Hackread – Cybersecurity News, Data Breaches, AI and More – ​Read More