The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
lokmattimes

Delhi Police nab another member of transnational arms-terror module, recover sophisticated weapon

New Delhi, April 15 The Delhi Police Crime Branch on Wednesday arrested another member of a transnational arms racketeering and terror module, identified as Harshpal ...
SecurityWeek

Guardarian Users Targeted With Malicious Strapi NPM Packages

A threat actor has targeted the Strapi ecosystem in a fresh supply chain attack involving 36 malicious NPM packages, according to supply chain security firm SafeDep. An open source headless CMS built ...