SecurityWeek

Bitwarden NPM Package Hit in Supply Chain Attack

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

Crime crew impersonates help desk, abuses Microsoft Teams to steal your data

A previously unknown threat group using tried-and-tested social engineering tactics - Microsoft Teams chat invitations and ...
Security Boulevard

Bitwarden CLI Compromise Linked to Ongoing Checkmarx Supply Chain Campaign

The compromise of a version of Bitwarden's CLI is connected to the ongoing Checkmarx supply chain campaign, but differences in the operational methods of both incidents are making it difficult to ...

macOS ClickFix attacks deliver AppleScript stealers to snarf credentials, wallets

A ClickFix campaign targeting macOS users delivers an AppleScript-based infostealer that collects credentials and live ...
DataBreachToday

Flurry of Supply-Chain Software Library Attacks

As supply-chain attacks against widely-used, open-source software repositories continue, experts are urging developers to not ...
The Hacker News

UNC6692 Impersonates IT Help Desk via Microsoft Teams to Deploy SNOW Malware

UNC6692 has been attributed to a large email campaign that's designed to overwhelm a target's inbox with a flood of spam ...
Security Boulevard

AI Vulnerability Chaining – Why Your Security Stack Cannot Detect What Comes Next

Mythos combined four separate low-severity bugs into a complete browser sandbox escape. Traditional scanners evaluate ...
Polity.org.za

‘I'm fighting to fix Johannesburg, not the Middle East’ – Helen Zille

Despite facing intense criticism and scrutiny over her stance on foreign affairs, Democratic Alliance (DA) Johannesburg ...

Trump hosts crypto contest winners at Mar-a-Lago as his coin languishes

The gala took place as scrutiny of the Trump family’s broader crypto ventures intensified, with Democratic leaders calling ...

Moose force a third and deciding game against the Admirals

David Gustafsson scored the game-winning goal on the powerplay late in the third as the Manitoba Moose beat the Milwaukee ...
The Caledonian-Record

authID Launches Industry-First Quantum-Resistant Biometric Authentication Platform

PrivacyKey Platform Integrates NIST Post-Quantum Standards and MPC Cryptographic Key Protection to Eliminate Quantum Threats and Future-Proof Identity Security ...

Password safe Bitwarden: Command-line client trojanized

The Bitwarden security team confirms that a malicious version of the command-line client was briefly distributed.