The Hacker News

Over 67,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack

The coordinated campaign has so far published as many as 46,484 packages, according to SourceCodeRED security researcher Paul ...

3 Engineer-Approved AI Tools to Master ‘Vibe Coding’ — and 7 Steps to Use Them

"Vibe coding" appeared in early 2025 to describe the simple idea of programming with AI tools. So I tested a range of them — ...
CSO Online

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser ...

Email Threat Radar – November 2025

Over the last month, Barracuda threat analysts have seen the following notable developments in email-based threats targeting ...

Trump signs funding deal to end longest-ever government shutdown. Updates

President Trump signed the bill into law in the Oval Office after the House voted to pass the funding measure earlier in the ...
SecurityWeek

Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm

A threat actor has published tens of thousands of malicious NPM packages that contain a self-replicating worm, security researchers warn.
Infosecurity Magazine

“IndonesianFoods” npm Worm Publishes 44,000 Malicious Packages

“After GlassWorm showed how quickly a malicious package could self-replicate across npm, and the chalk/debug hijacking ...

Business Brief: Gold, war and Canadian money

Overseas, the pan-European STOXX 600 was up 0.05 per cent in morning trading. Britain’s FTSE 100 slid 0.47 per cent, Germany’s DAX gave back 0.46 per cent and France’s CAC 40 rose 0.65 per cent. In ...