Malicious NPM Packages Disguised as Express Utilities Allow Attackers to Wipe Systems

/in

Two malicious NPM packages contain code that would delete production systems when triggered with the right credentials.

The post Malicious NPM Packages Disguised as Express Utilities Allow Attackers to Wipe Systems appeared first on SecurityWeek.

SecurityWeek – ​Read More

React Native Aria Packages Backdoored in Supply Chain Attack

/in

A threat actor published backdoored versions of 17 NPM packages from GlueStack in a fresh supply chain attack.

The post React Native Aria Packages Backdoored in Supply Chain Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

Google fixes bug that could reveal users’ private phone numbers

/in

The bug allowed a researcher to uncover recovery phone numbers of nearly any Google account.

Security News | TechCrunch – ​Read More

Apple, Google, and Microsoft offer free password managers – but should you use them?

/in

The three dominant computing platforms have each tried to build features that help you manage passwords without paying for third-party software. Are any of them worth your time and effort?

Latest stories for ZDNET in Security – ​Read More

Kazakhstan detains over 140 for allegedly selling citizens’ data via Telegram channels

/in

Authorities said they busted a ring responsible for illegally extracting citizens’ data from Kazakhstan’s government networks and distributing it through Telegram and other ways.

The Record from Recorded Future News – ​Read More

iMessage Zero-Click Attacks Suspected in Targeting of High-Value EU, US Individuals

/in

iVerify links iPhone crashes to sophisticated zero-click attacks via iMessage targeting individuals involved in politics in the EU and US.

The post iMessage Zero-Click Attacks Suspected in Targeting of High-Value EU, US Individuals appeared first on SecurityWeek.

SecurityWeek – ​Read More

NHS calls for 1 million blood donors as UK stocks remain low following cyberattack

/in

A cyberattack on London hospitals last year led to the depletion of stocks of crucial O-type blood, and the U.K.’s National Health Service is calling for a nationwide effort to shore up supplies.

The Record from Recorded Future News – ​Read More

Seraphic Security Unveils BrowserTotal™ – Free AI-Powered Browser Security Assessment for Enterprises

/in

Tel Aviv, Israel, 9th June 2025, CyberNewsWire

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

US Seeks Forfeiture of $7.74M in Cryptocurrency Tied to North Korean IT Workers

/in

The US is seeking the forfeiture of $7.74 million in cryptocurrency in frozen wallets tied to North Korean fake IT workers schemes.

The post US Seeks Forfeiture of $7.74M in Cryptocurrency Tied to North Korean IT Workers appeared first on SecurityWeek.

SecurityWeek – ​Read More

New PathWiper Malware Strikes Ukraine’s Critical Infrastructure

/in

Cisco Talos discovers PathWiper, a destructive new malware targeting critical infrastructure in Ukraine, highlighting ongoing cyber threats amidst the Russia-Ukraine conflict.

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More