News

Hackers steal 3,325 secrets in GhostAction GitHub supply chain attack

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, ...
Krebs on Security14h

18 Popular Code Packages Hacked, Rigged to Steal Crypto

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...

SwissBorg hacked for $41M SOL after third-party API compromise

Hackers exploited Kiln’s API to drain 193,000 SOL ($41M) from SwissBorg’s Solana Earn program. The firm pledged ...

Failed NPM exploit highlights looming threat to crypto security: Exec

The Open Network chief technology officer, Anatoly Makosov, said the solution to the attack is to switch to a safe version and reinstall clean code.