The Hacker News

145 Mastra npm Packages Compromised via Hijacked Contributor Account

Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.
The Next Web

Microsoft finds USB worm that steals cryptocurrency through clipboard hijacking and Tor

Microsoft discovered a self-spreading USB worm active since February that monitors clipboards for crypto wallets and routes stolen data through Tor.
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
IGN

Lost Module

This page of IGN's Mass Effect wiki guide is all about the UNC: Lost Module Assignment, including where to find all the items and how to survive the combat encounters. This Assignment can be started ...
Nature

Deep learning reveals antimicrobial peptides within prions

The alternative text for this image may have been generated using AI. A major barrier in AMP development is host toxicity. We therefore assessed haemolysis against human red blood cells (RBCs) and ...
SecurityWeek

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum

Android TV botnet Popa linked to Israeli firm, Velvet Ant maintained decade-long stealth, unpatched GCP flaw enables takeover.