New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
CoinDesk

Hack at Vercel sends crypto developers scrambling to lock down API keys

Breach tied to compromised AI tool may have exposed credentials used by app frontends, the user-facing layer that connects ...
The Hacker News

Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials

Context.ai breach enabled Google Workspace takeover at Vercel, exposing limited customer credentials and prompting $2M data ...

Vercel confirms breach as hackers claim to be selling stolen data

Cloud development platform Vercel has disclosed a security incident after threat actors claimed to have breached its systems ...

Cybersecurity Experts Warn: This Common Email Habit Is a Gift to Hackers

Your email address is your identity, so you should treat it with care. Here’s how.

Suspect Accused of Hacking Climate Activists Appears in Court

Amit Forlit is accused of running a hacking operation that aimed to thwart climate litigation at the behest of a lobbying ...

Hackers used AI to steal hundreds of millions of Mexican government and private citizen records in one of the largest cybersecurity breaches ever

A group of hackers used both Claude Code and ChatGPT in a cybersecurity hack that lasted two and a half months.