Hackers exploited a compromised npm package to breach cloud systems and gain full AWS administrator access within 72 hours.

Crypto scammers are exploiting the rising visibility of OpenClaw to target developers through a coordinated phishing campaign ...

UNC6426 used stolen GitHub tokens from the 2025 nx npm breach to gain AWS admin access in under 72 hours, enabling data theft ...

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

Cloud attacks are getting faster and deadlier - here's your best defense plan ...

The Glassworm campaign has compromised over 151 GitHub repositories and npm packages using invisible Unicode payloads that ...

Attackers have hijacked 75 of 76 GitHub Actions tags for Aqua Security's Trivy scanner, distributing credential-stealing ...

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

The exploit is now publicly available on GitHub, increasing the urgency for older iPhones and iPads to run the latest ...

A new hacking group has been rampaging the Internet in a persistent campaign that spreads a self-propagating and never-before ...