GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...
The Poynter Institute for Media Studies

Fake images from the Iran war are spreading online. Here’s how to spot them

Old videos, AI-generated imagery and misleading captions are circulating widely on social media as the conflict unfolds ...
Microsoft

Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...
PolitiFact

Social media feeds are awash with Iran war misinformation. Here’s how to identify false imagery

Tal Hagin, an open-source intelligence analyst based in Israel, compiles misinformation and shares his findings on X daily. He said he’s seen people recycling footage of Iranian missile strikes in ...
The Hacker News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.
Bleeping Computer

Fake Google Security site uses PWA app to steal credentials, MFA codes

A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time passcodes, harvesting cryptocurrency wallet addresses, and proxying attacker ...
The New York Times

Mamdani’s Gift for Trump: A Front Page Celebrating the President

What do you bring the president when you visit the White House? Mayor Zohran Mamdani made a choice that seemed to please Donald Trump. By Emma Goldberg It was diplomacy through arts and crafts. It was ...
The Hacker News

The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach reports, expert analysis, and actionable insights for infosec professionals and ...
CBS News

Hegseth demands full military access to Anthropic's AI model Claude and sets deadline for end of week

Trust is breaking down between the Pentagon and Anthropic over the use of its AI model, sources familiar with the situation told CBS News. In a meeting at the Pentagon on Tuesday morning, Defense ...
IEEE

Fake News Detection Using Machine Learning

Abstract: False news detection using text classification technology has many real-world uses in addition to significant research value. However, current methods frequently overlook inter-article ...