The Hacker News

Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials

Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency ...
The Register-Herald

The Latest: US Central Command leader says Iran campaign is 'ahead or on plan'

The top commander of the U.S. military’s Central Command says the campaign against Iran is “ahead or on plan,” as the Israeli ...
The Caledonian-Record

Thomas Global Systems Participates in Northrop Grumman 2026 IBCS Supplier Summit

Thomas Global Systems participated in the Northrop Grumman 2026 Integrated Battle Command System (IBCS) Supplier Summit held March 16–17, 2026, on Capitol ...
The Caledonian-Record

Parsons Operationally Fields First Phased Array Antenna for Satellite Command and Control

Parsons Corporation (NYSE: PSN) announced today it has completed integration, testing, and operational acceptance of the ...

The Army's $87 million deal with Anduril is about linking sensors and shooters to give operators a better shot at defeating drones

The $87 million effort puts Anduril's AI-powered software at the core of the Army-led counter-drone task force.
United States Army

Cybertip leads to Soldier in Korea pleading guilty to possessing child pornography

Overwhelming evidence led to a Solider pleading guilty to possessing child pornography during his court-martial March 6 at the ...

New font-rendering trick hides malicious commands from AI tools

A new font-rendering attack causes AI assistants to miss malicious commands shown on webpages by hiding them in seemingly harmless HTML.
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...
CSO Online

ClickFix techniques evolve in new infostealer campaigns

Recent social engineering schemes involving WordPress and Microsoft’s Windows Terminal show that this relatively basic tactic ...

AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
CSOonline

Open source maintainers being targeted by AI agent as part of ‘reputation farming’

AI agents able to submit huge numbers of pull requests (PRs) to open-source project maintainers risk creating the conditions for future supply chain attacks targeting important software projects, ...