SecurityWeek

OpenSSL Patches High-Severity Vulnerability Found With AI

The latest OpenSSL releases patch 18 vulnerabilities, including a high-severity issue that could allow remote code execution.
Decrypt

Humanity Protocol Loses $36M After Private Keys 'Compromised,' Token Crashes 73%

The decentralized identity protocol said a compromised employee's laptop let attackers seize its bridges and mint tokens at ...

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
GitHub

War Thunder resource extraction tools

Tools that help you extract resources from game: fonts, textures, FM/DM of tanks/planes/ships, parameters of weapons, and other interesting stuff. It also should work for Cuisine Royale and Enlisted ...
Microsoft

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft

Microsoft has identified an active supply chain attack targeting the @antv node package manager (npm) package ecosystem. A threat actor compromised an @antv maintainer account and published malicious ...