The Hacker News

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Tampered JavaScript in three Awesome Motive plugins exposed WordPress sites to rogue admin accounts and hidden backdoors.
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
The New York Times

Bluesky Says Kremlin Is Hacking Its Platform to Spread Propaganda

The company said it was fighting Russian efforts to hijack real users’ accounts to post fake content, an apparently novel tactic. By Steven Lee Myers Ben Gilbert describes himself on Bluesky, the ...
SecurityWeek

GitHub Confirms Hack Impacting 3,800 Internal Repositories

The TeamPCP hacking group accessed the repositories after a GitHub employee installed a poisoned VS Code extension. Microsoft-owned code-hosting platform GitHub on Wednesday morning confirmed that ...
https//beincrypto.com

May’s DeFi Hack Tally Grows as Verus Bridge Reportedly Loses $11.58 Million

Blockchain security company Blockaid flagged the exploit in a post on X. Security researchers identified the attacker’s externally owned account (EOA) as ...