Malicious PyPI, npm, and Ruby Packages Exposed in Ongoing Open-Source Supply Chain Attacks

THN Daily Updates The Embedded Linux Security Handbook: Fortify your embedded Linux systems from design to deployment ($31.99 Value) FREE for a Limited Time As embedded Linux systems power countless devices in our daily lives, they’ve become prime targets for cyberattacks. In this in-depth guide to safeguarding your Linux devices, the author leverages his 30+ years of technology experience to help you mitigate the risks associated with hardware and software vulnerabilities. Download Now Sponsored LATEST NEWS Jun 4, 2025 Malicious PyPI, npm, and Ruby Packages Exposed in Ongoing Open-Source Supply Chain Attacks Several malicious packages have been uncovered across the npm, Python, and Ruby package repositories that drain funds from cryptocurrency wallets, erase entire codebases after installation, and exfiltrate Telegram API t... Read More HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass Hewlett Packard Enterprise (HPE) has released security updates to address as many as eight vulnerabilities in its StoreOnce data backup and deduplication solution that could result in an authentication bypass and remot... Read More VPNs Are Preventing Workforce Productivity. Securely Embrace GenAI Empower your workforce to leverage GenAI and reduce data loss for your organization with Zero Trust + AI. Read More Fake DocuSign, Gitcode Sites Spread NetSupport RAT via Multi-Stage PowerShell Attack Threat hunters are alerting to a new campaign that employs deceptive websites to trick unsuspecting users into executing malicious PowerShell scripts on their machines and infect them with the NetSupport RAT malware. Th... Read More Critical 10-Year-Old Roundcube Webmail Bug Allows Authenticated Users Run Malicious Code Cybersecurity researchers have disclosed details of a critical security flaw in the Roundcube webmail software that has gone unnoticed for a decade and could be exploited to take over susceptible systems and execute arb... Read More Secure Dev, Ops, and Cloud—Together. See How in Just 15 Minutes Protect everything you build and run in the cloud—fast. Wiz gives you full visibility from code to runtime so teams can reduce risk and move faster. Read More Scattered Spider: Understanding Help Desk Scams and How to Defend Your Organization In the wake of high-profile attacks on UK retailers Marks & Spencer and Co-op, Scattered Spider has been all over the media, with coverage spilling over into the mainstream news due to the severity of the disruption... Read More Android Trojan Crocodilus Now Active in 8 Countries, Targeting Banks and Crypto Wallets A growing number of malicious campaigns have leveraged a recently discovered Android banking trojan called Crocodilus to target users in Europe and South America. The malware, according to a new report published by Thre... Read More The Embedded Linux Security Handbook: Fortify your embedded Linux systems from design to deployment ($31.99 Value) FREE for a Limited Time As embedded Linux systems power countless devices in our daily lives, they’ve become prime targets for cyberattacks. In this in-depth guide to safeguarding your Linux devices, the author leverages his 30+ years of technology experience to help you mitigate the risks associated with hardware and software vulnerabilities. Download Now Sponsored This email was sent to sikubaycom.s3cr3tz@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please click here. Contact THN: info@thehackernews.com Unsubscribe THN | K.P BLock, Pitampura, Delhi