Official SAP npm packages compromised to steal credentials

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...

From XSS to RCE: How to hijack a DotNetNuke server via a single script injection

Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...

Charter sues Express Scripts over millions in unpaid drug rebate payments

Preview this article 1 min The dispute centers on prescription drug claims between 2020 and 2022. Charter alleges the ...
SecurityWeek

UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware

UNC6692 relies on email bombing and social engineering to infect victims with Snow malware: Snowbelt, Snowglaze, and ...

Canadian health-tech firm signs hefty Chandler industrial lease

Preview this article 1 min A Canadian health-tech company is moving to a large industrial park near the Chandler Municipal ...
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
The Register-Herald

Growing up with ‘Toy Story’: Andrew Stanton on 30+ years with Woody and Buzz

Andrew Stanton has spent over half his life with “Toy Story.” He’s contributed to every movie, and now he’s co-writing and co ...

Crime crew impersonates help desk, abuses Microsoft Teams to steal your data

A previously unknown threat group using tried-and-tested social engineering tactics - Microsoft Teams chat invitations and ...
The Hacker News

Brazilian LofyGang Resurfaces After Three Years With Minecraft LofyStealer Campaign

LofyGang resurfaces with LofyStealer disguised as Minecraft hack, exfiltrating IBANs and passwords to 24.152.36[.]241, ...
TechJuice

Hackers Deploy SNOW Malware Suite via Microsoft Teams

A cyber group is impersonating IT helpdesk staff via Microsoft Teams to deploy malware and target corporate systems.
Queerty

Hudson Williams & Omar Apollo hook up for new “culinary thriller”

Heated Rivalry star Hudson Williams and out-queer actor and singer Omar Apollo are among the latest names confirmed for a new ...

Meet the 64MB Browser Built Entirely for AI Agents and Automation : Lightpanda

Discover how Lightpanda, a 64MB headless browser built in Zig, offers 9x faster speeds and 16x less memory usage than Chrome for AI web scraping.