The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
The Hacker News

Hacking Salesforce Sites With an LLM Agent

AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The ...
GitHub

ridpath/SCADA-OT-CheatSheet-Advanced-ICS-Hacking-Playbook

All-in-one ICS/SCADA hacking, red teaming, malware analysis, detection, and lab architecture cheat sheet - ridpath/SCADA-OT-CheatSheet-Advanced-ICS-Hacking-Playbook ...