The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
The Caledonian-Record

Graham Platner wins the Democratic primary for US Senate in Maine, will face GOP Sen. Susan Collins

Graham Platner is seeking to make a Democratic nomination for U.S. Senate official in advance of one of the most anticipated contests of the year. Platner is a brash political ...
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
The Caledonian-Record

Platner seeks Democratic nomination for US Senate to set up critical Maine race with Collins

Graham Platner is seeking to make a Democratic nomination for U.S. Senate official in advance of one of the most anticipated contests of the year. Platner is a brash political ...

Rockville startup Quantum Space plans to go public via SPAC merger

It's becoming a busier year for IPOs of D.C-area companies. A Rockville space tech company whose CEO is a former NASA chief ...

Days before Apple's WWDC, Google says Chrome is faster than ever on the M5 MacBook Pro

Google has published two new browser benchmark scores for Chrome, both records, both run on Apple hardware, and both dropped ...
The Register-Herald

Trump's deportation agenda is about to get a $70B infusion from Congress

With virtually no strings attached, Congress is on the verge of providing a massive infusion of cash to the Homeland Security ...
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The ...
Tech Times

SVG Phishing Emails Bypass Email Security: SANS Flags New MIME-Type Evasion

SVG phishing email attacks are bypassing enterprise email security gateways by hiding JavaScript inside image files and ...

CoStar to buy Zonda for $800M

CoStar Group is making another major move, agreeing to acquire home construction data firm Zonda for $800 million in cash.
Popular Mechanics

Scientists Think They Just Accidentally Proved String Theory

String theory attempts to unify general relativity and quantum theory. Popular in the 1990s, string theory fell out of favor as it failed to provide testable predictions and required ten dimensions ...